VDB
CVE-2023-32434
CVE-2023-32434
PUBLISHED
KEV
In Apple iOS und Apple iPadOS existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Eingabevalidierung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code mit Administratorrechten auszuführen. Für eine erfolgreiche Ausnutzung ist eine Benutzeraktion erforderlich.
EPSS 52.38% · 98.0th percentile
Risk Scores
EPSS Score
52.38%
98.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Apple iOS < 15.8 |
Exploit Intelligence
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- Deterministic kernel exploit based on CVE-2023-32434. (github-poc-repo)
- oob_entry tfp0 kernel exploit for armv7 iOS (iOS 3.0–10.3.4), using CVE-2023-32434. We will publish a write-up detailing the methods in the coming weeks. 🐙 (github-poc-repo)
…and 185 more exploits
Timeline
- Jan 21, 1970 VulnCheck XDB Entry
- Sep 13, 2021 VulnCheck KEV Exploitation
- Sep 23, 2021 VulnCheck KEV Exploitation
- Jun 21, 2023 VulnCheck KEV Exploitation
- Jun 21, 2023 PoC Published
- Jun 21, 2023 CVE Published
- Jun 23, 2023 CISA KEV Added
- Jun 23, 2023 PoC Published
- Jun 23, 2023 PoC Published
- Jun 24, 2023 EPSS Score
- Oct 25, 2023 VulnCheck KEV Exploitation
- Dec 27, 2023 VulnCheck KEV Exploitation
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1535.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1535 advisory
- https://support.apple.com/en-us/HT213813 advisory
- https://support.apple.com/en-us/HT213810 advisory
- https://support.apple.com/en-us/HT213809 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1537.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1537 advisory
- https://support.apple.com/en-us/HT213990 advisory
- https://support.apple.com/en-us/HT213814 advisory
- https://support.apple.com/en-us/HT213811 advisory