CVE-2023-23493

Summary

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.2, macOS Monterey 12.6.3. An encrypted volume may be unmounted and remounted by a different user without prompting for the password.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 13.2affected
ApplemacOSunspecified < 12.6affected

Weaknesses

  • An encrypted volume may be unmounted and remounted by a different user without prompting for the password

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References