The issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.3, macOS Sonoma 14.1, macOS Monterey 12.7.1. An app with root privileges may be able to access private information.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/HT213982 | Vendor Advisory |
| https://support.apple.com/en-us/HT213983 | Vendor Advisory |
| https://support.apple.com/en-us/HT213984 | Vendor Advisory |
| https://support.apple.com/en-us/HT214038 | Vendor Advisory |
| https://support.apple.com/en-us/HT213982 | Vendor Advisory |
| https://support.apple.com/en-us/HT213983 | Vendor Advisory |
| https://support.apple.com/en-us/HT213984 | Vendor Advisory |
| https://support.apple.com/en-us/HT214038 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
27 Mar 2025, 21:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-269 |
05 Dec 2024, 19:56
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://support.apple.com/en-us/HT213982 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT213983 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT213984 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT214038 - Vendor Advisory | |
| CWE | NVD-CWE-noinfo | |
| CPE | cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:14.0:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.4 |
| First Time |
Apple ipad Os
Apple iphone Os Apple Apple macos |
Information
Published : 2024-02-21 07:15
Updated : 2025-03-27 21:15
NVD link : CVE-2023-42952
Mitre link : CVE-2023-42952
CVE.ORG link : CVE-2023-42952
JSON object : View
Products Affected
apple
- iphone_os
- macos
- ipad_os
CWE