CVE-2023-42952

Summary

The issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.3, macOS Sonoma 14.1, macOS Monterey 12.7.1. An app with root privileges may be able to access private information.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 13.6affected
ApplemacOSunspecified < 14.1affected
AppleiOS and iPadOSunspecified < 17.1affected
ApplemacOSunspecified < 12.7affected

Weaknesses

  • An app with root privileges may be able to access private information

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References