CVE-2023-42872

2024-01-1022:03:48

apple

www.cve.org

macos sonoma

ios 17

ipados 17

sensitive data access

AI Score

6.1

Confidence

Low

EPSS

0.001

Percentile

20.7%

JSON

The issue was addressed with additional permissions checks. This issue is fixed in macOS Sonoma 14, iOS 17 and iPadOS 17. An app may be able to access sensitive user data.

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "17",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "macOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "14",
        "versionType": "custom"
      }
    ]
  }
]

References

support.apple.com/en-us/HT213938

support.apple.com/en-us/HT213940