Lucene search
AppleCVE-2023-42935HistoryJan 23, 2024 - 1:15 a.m.
CVE-2023-42935
2024-01-2301:15:10
apple
web.nvd.nist.gov
34
cve-2023-42935
authentication issue
macos ventura 13.6.4
local attacker
desktop privacy
nvd
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.7
Confidence
Low
EPSS
0
Percentile
5.1%
An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.6.4. A local attacker may be able to view the previous logged in user’s desktop from the fast user switching screen.
Affected configurations
Node
applemacosRange13.0–13.6.4
ORapplemacosRange14.0–14.1
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "13.6",
"versionType": "custom"
}
]
}
]Related
prion
prion
Authentication flaw
2024-01-23 01:15:00
cvelist
cvelist
CVE-2023-42935
2024-01-23 00:25:17
nvd
nvd
CVE-2023-42935
2024-01-23 01:15:10
openvas
openvas
Apple Mac OS X Security Update (HT214058)
2024-01-23 00:00:00
nessus
nessus
macOS 13.x < 13.6.4 Multiple Vulnerabilities (HT214058)
2024-01-22 00:00:00
macOS 14.x < 14.1 Multiple Vulnerabilities (HT213984)
2024-01-23 00:00:00
apple
apple
About the security content of macOS Ventura 13.6.4
2024-01-22 00:00:00
About the security content of macOS Sonoma 14.1
2023-10-25 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.7
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2023-42935