CVE-2023-42969

Summary

An app may be able to break out of its sandbox. This issue is fixed in iOS 17 and iPadOS 17, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14, macOS Ventura 13.6, macOS Monterey 12.7. The issue was addressed with improved handling of caches.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 17affected
AppleiOS and iPadOSunspecified < 16.7affected
ApplemacOSunspecified < 14affected
ApplemacOSunspecified < 13.6affected
ApplemacOSunspecified < 12.7affected

Weaknesses

  • The issue was addressed with improved handling of caches.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References