Lucene search
HistorySep 27, 2023 - 3:19 p.m.
CVE-2023-40422
cve-2023-40422
memory handling
macos sonoma 14
denial-of-service
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
10.4%
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14. An app may be able to cause a denial-of-service.
Affected configurations
Node
applemacosRange<14.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:macos | apple macos | lt | 14.0 |
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14",
"versionType": "custom"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2023-09-27 15:19:00
cvelist
cvelist
CVE-2023-40422
2023-09-26 20:14:58
nvd
nvd
CVE-2023-40422
2023-09-27 15:19:10
apple
apple
About the security content of iOS 17 and iPadOS 17
2023-09-18 00:00:00
About the security content of macOS Sonoma 14
2023-09-26 00:00:00
openvas
openvas
Apple Mac OS X Security Update (HT213940)
2023-10-27 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
10.4%
Related for CVE-2023-40422