5.5

CVE-2023-41232

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.7, iOS 17 and iPadOS 17, macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7. An app may be able to disclose kernel memory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPadOS Version < 16.7
AppleiPhone OS Version < 16.7
ApplemacOS Version >= 12.0.0 < 12.7
ApplemacOS Version >= 13.0 < 13.6
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.3% 0.21
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://support.apple.com/en-us/HT213927
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213931
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213932
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213938
Vendor Advisory
Release Notes
http://seclists.org/fulldisclosure/2023/Oct/4
http://seclists.org/fulldisclosure/2023/Oct/6
http://seclists.org/fulldisclosure/2023/Oct/5
Third Party Advisory
Mailing List
https://support.apple.com/kb/HT213938
https://support.apple.com/kb/HT213927
https://support.apple.com/kb/HT213931
https://support.apple.com/kb/HT213932