CVE-2023-32365

2023-06-2300:00:00

apple

www.cve.org

cve-2023-32365

ios security

ipados security

shake-to-undo

photo authentication

5.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.8%

JSON

The issue was addressed with improved checks. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, iOS 16.5 and iPadOS 16.5. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication.

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "15.7",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "16.5",
        "versionType": "custom"
      }
    ]
  }
]

References

support.apple.com/en-us/HT213757

support.apple.com/en-us/HT213765