Lucene search
China National Vulnerability DatabaseCNVD-2023-68416HistorySep 09, 2023 - 12:00 a.m.
Arbitrary Code Execution Vulnerability in Various Apple Products (CNVD-2023-68416)
2023-09-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
ios
ipados
watchos
code execution
vulnerability
apple products
passkit
attachment
attack.
0.001 Low
EPSS
Percentile
30.5%
iOS is a mobile operating system developed by Apple. iPadOS is a family of mobile operating systems developed by Apple based on iOS. watchOS is the operating system for Apple Watch. Arbitrary code execution vulnerability exists in several Apple products, which can be exploited by an attacker to execute arbitrary code via a maliciously crafted PassKit attachment without any interaction with the victim.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple ios | lt | 16.6.1 | |
| apple ipados | lt | 16.6.1 | |
| apple watchos | lt | 9.6.2 |
Related
cvelist
cvelist
CVE-2023-41061
2023-09-07 17:30:09
cve
cve
CVE-2023-41061
2023-09-07 18:15:07
prion
prion
Input validation
2023-09-07 18:15:00
nvd
nvd
CVE-2023-41061
2023-09-07 18:15:07
apple
apple
About the security content of watchOS 9.6.2
2023-09-07 00:00:00
About the security content of iOS 16.6.1 and iPadOS 16.6.1
2023-09-07 00:00:00
attackerkb
attackerkb
CVE-2023-41061
2023-09-07 00:00:00
schneier
schneier
Zero-Click Exploit in iPhones
2023-09-13 11:13:39
cisa_kev
cisa_kev
Apple iOS, iPadOS, and watchOS Wallet Code Execution Vulnerability
2023-09-11 00:00:00
Apple iOS, iPadOS, and macOS ImageIO Buffer Overflow Vulnerability
2023-09-11 00:00:00
malwarebytes
malwarebytes
hivepro
hivepro
Apple Addresses Two Zero-Day Flaws Exploited by Attackers
2023-09-15 06:10:10
thn
thn