VDB

CISA-2023-23520

CISA-2023-23520 PUBLISHED CVSS 5.9 MEDIUM

Reported by apple · Published February 27, 2023

A race condition was addressed with additional validation. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. A user may be able to read arbitrary files as root.

Risk Scores

CVSS 3.1
5.9
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersions
AppleiOS and iPadOSunspecified
AppletvOSunspecified
ApplemacOSunspecified
ApplewatchOSunspecified
AppletvOSunspecified, unspecified
ApplemacOSunspecified, unspecified
ApplewatchOSunspecified, *
AppleiOS and iPadOSunspecified, unspecified

Timeline

  • Feb 27, 2023 CVE Published
  • Mar 11, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›