CVE-2023-42941Uncontrolled Resource Consumption in Apple IOS AND Ipados

CWE-400Uncontrolled Resource Consumption3 documents3 sources
Severity
4.8MEDIUMNVD
EPSS
0.1%
top 72.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Apple IOS AND IpadosApple IpadosApple Iphone OS+1 more
Timeline
PublishedJan 10
Latest updateJan 11

Description

The issue was addressed with improved checks. This issue is fixed in iOS 17.2 and iPadOS 17.2. An attacker in a privileged network position may be able to perform a denial-of-service attack using crafted Bluetooth packets.

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.2 | Impact: 3.6

Affected Packages4 packages

NVDapple/ipados< 17.2
CVEListV5apple/ios_and_ipadosunspecified17.2
NVDapple/iphone_os< 17.2

🔴Vulnerability Details

1
GHSA
GHSA-7v39-pqxg-4xwf: The issue was addressed with improved checks2024-01-11

📋Vendor Advisories

1
Apple
CVE-2023-42941: iOS 17.2 and iPadOS 17.22023-12-11
CVE-2023-42941 — Uncontrolled Resource Consumption | cvebase