Lucene search
HistoryOct 25, 2023 - 7:15 p.m.
CVE-2023-41989
cve-2023-41989
macos
sonoma
security
arbitrary code execution
nvd
6.8 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
The issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sonoma 14.1. An attacker may be able to execute arbitrary code as root from the Lock Screen.
CPE configuration
applemacosRange<14.1
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.1",
"versionType": "custom"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2023-10-25 19:15:00
nvd
nvd
CVE-2023-41989
2023-10-25 19:15:10
cvelist
cvelist
CVE-2023-41989
2023-10-25 18:32:17
malwarebytes
malwarebytes
Update now! Apple patches a raft of vulnerabilities
2023-10-27 05:11:08
openvas
openvas
Apple Mac OS X Security Update (HT213984)
2023-10-27 00:00:00
apple
apple
About the security content of macOS Sonoma 14.1
2023-10-25 00:00:00
nessus
nessus
macOS 14.x < 14.1 Multiple Vulnerabilities (HT213984)
2024-01-23 00:00:00
6.8 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
Related for CVE-2023-41989