Lucene search
AppleCVE-2023-42918HistoryJul 29, 2024 - 9:15 p.m.
CVE-2023-42918
2024-07-2921:15:11
CWE-693
apple
web.nvd.nist.gov
32
permissions issue
macos
sonoma 14
sandboxed process
sandbox restrictions
CVSS3
8.6
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
9.4%
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14. A sandboxed process may be able to circumvent sandbox restrictions.
Affected configurations
Node
applemacosRange<14
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14",
"versionType": "custom"
}
]
}
]References
Related
cvelist
cvelist
CVE-2023-42918
2024-07-29 20:21:06
nvd
nvd
CVE-2023-42918
2024-07-29 21:15:11
vulnrichment
vulnrichment
CVE-2023-42918
2024-07-29 20:21:06
openvas
openvas
Apple Mac OS X Security Update (HT213940)
2023-10-27 00:00:00
apple
apple
About the security content of macOS Sonoma 14
2023-09-26 00:00:00
CVSS3
8.6
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
9.4%
Related for CVE-2023-42918