The vulnerability of the Model I/O framework in the macOS operating system, allowing a hacker to execute arbitrary code.

🗓️ 15 Apr 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

The macOS Model I/O framework has a buffer overflow that enables code execution with a crafted file.

Reporter	Title	Published	Views	Family All 14
Apple	About the security content of macOS Sonoma 14	26 Sep 202300:00	–	apple
CNNVD	Apple macOS Sonoma 安全漏洞	14 Feb 202300:00	–	cnnvd
CVE	CVE-2023-42826	10 Jan 202422:03	–	cve
Cvelist	CVE-2023-42826	10 Jan 202422:03	–	cvelist
EUVD	EUVD-2023-47247	3 Oct 202520:07	–	euvd
NVD	CVE-2023-42826	10 Jan 202422:15	–	nvd
OpenVAS	Apple Mac OS X Security Update (HT213940)	27 Oct 202300:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2023:0397-1)	14 Feb 202300:00	–	openvas
Prion	Code injection	10 Jan 202422:15	–	prion
Positive Technologies	PT-2023-8989 · Apple +1 · Apple Macos +1	27 Jun 202300:00	–	ptsecurity

Vulners

Node

apple macosRange<14

Source	Link
support	www.support.apple.com/en-us/HT213940
suse	www.suse.com/security/cve/CVE-2023-42826.html
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-23-1763/
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2023092664
web	www.web.nvd.nist.gov/view/vuln/detail
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-23-1763/

15 Apr 2024 00:00Current

7.8High risk

Vulners AI Score7.8

CVSS 27.2

CVSS 37.8

EPSS0.00056

macOS Model framework Buffer overflow Code execution Crafted file