The issue was addressed with improved bounds checks. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to overwrite arbitrary files.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 08:19
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://seclists.org/fulldisclosure/2023/Oct/10 - Mailing List, Third Party Advisory | |
| References | () http://seclists.org/fulldisclosure/2023/Oct/3 - | |
| References | () http://seclists.org/fulldisclosure/2023/Oct/5 - Mailing List, Third Party Advisory | |
| References | () http://seclists.org/fulldisclosure/2023/Oct/6 - | |
| References | () http://seclists.org/fulldisclosure/2023/Oct/8 - | |
| References | () http://seclists.org/fulldisclosure/2023/Oct/9 - | |
| References | () https://support.apple.com/en-us/HT213931 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT213932 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT213936 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT213937 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT213938 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT213940 - Vendor Advisory |
Information
Published : 2023-09-27 15:19
Updated : 2024-11-21 08:19
NVD link : CVE-2023-40452
Mitre link : CVE-2023-40452
CVE.ORG link : CVE-2023-40452
JSON object : View
Products Affected
apple
- macos
- iphone_os
- watchos
- ipados
- tvos
CWE