CVE-2023-28202

Summary

This issue was addressed with improved state management. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app firewall setting may not take effect after exiting the Settings app.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 13.4affected
ApplewatchOSunspecified < 9.5affected
AppleiOS and iPadOSunspecified < 16.5affected
AppletvOSunspecified < 16.5affected

Weaknesses

  • An app firewall setting may not take effect after exiting the Settings app

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References