CVE-2023-23523

Summary

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 13.3affected
AppleiOS and iPadOSunspecified < 16.4affected

Weaknesses

  • Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References