CVE-2023-23498

Summary

A logic issue was addressed with improved state management. This issue is fixed in iOS 15.7.3 and iPadOS 15.7.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. The quoted original message may be selected from the wrong email when forwarding an email from an Exchange account.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 16.3affected
AppleiOS and iPadOSunspecified < 15.7affected
ApplemacOSunspecified < 13.2affected

Weaknesses

  • The quoted original message may be selected from the wrong email when forwarding an email from an Exchange account

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References