VDB

CISA-2023-42870

CISA-2023-42870 PUBLISHED CVSS 7.8 HIGH

Reported by apple · Published January 10, 2024

A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sonoma 14, iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges.

Risk Scores

CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
AppleiOS and iPadOSunspecified
ApplemacOSunspecified
ApplemacOSunspecified, unspecified
AppleiOS and iPadOSunspecified, unspecified

Timeline

  • Jan 10, 2024 CVE Published
  • Aug 30, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›