CVE-2023-23526

Summary

This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 13.3affected
AppleiOS and iPadOSunspecified < 16.4affected

Weaknesses

  • A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References