Lucene search
HistoryJul 29, 2024 - 9:15 p.m.
CVE-2023-40398
macos
ios
sandbox restrictions
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
5.0%
This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.4, macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A sandboxed process may be able to circumvent sandbox restrictions.
Affected configurations
Node
appleipadosRange<16.4
ORappleiphone_osRange<16.4
ORapplemacosRange<11.7.5
ORapplemacosRange12.0–12.6.4
ORapplemacosRange13.0–13.3
Related
cvelist
cvelist
CVE-2023-40398
2024-07-29 20:21:38
cve
cve
CVE-2023-40398
2024-07-29 21:15:11
vulnrichment
vulnrichment
CVE-2023-40398
2024-07-29 20:21:38
openvas
openvas
Apple Mac OS X Security Update (HT213675)
2023-03-29 00:00:00
Apple Mac OS X Security Update (HT213677)
2023-03-29 00:00:00
Apple Mac OS X Security Update (HT213670)
2023-03-29 00:00:00
apple
apple
About the security content of macOS Big Sur 11.7.5
2023-03-27 00:00:00
About the security content of macOS Monterey 12.6.4
2023-03-27 00:00:00
About the security content of iOS 16.4 and iPadOS 16.4
2023-03-27 00:00:00
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
5.0%
Related for NVD:CVE-2023-40398