CVE-2023-41984

2023-09-2620:14:56

apple

github.com

memory handling

macos ventura

tvos 17

ios 16.7

ipados 16.7

macos monterey

watchos 10

macos sonoma

arbitrary code execution

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

35.7%

SSVC

Exploitation

none

Automatable

Technical Impact

total

JSON

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:o:apple:ios_and_ipados:*:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "ios_and_ipados",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "16.7",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "17",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "macos",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "12.7",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "13.6",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "14",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:apple:tvos:-:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "tvos",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "17",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:apple:watchos:-:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "watchos",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "10",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]