PT-2023-8413 · Apple · Apple Macos+2

Zweig

Publicado

2023-09-26

Atualizado

2024-08-30

CVE-2023-42870

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS versions prior to 14 iOS versions prior to 17 iPadOS versions prior to 17

Description The issue is related to a use-after-free problem, which is associated with the improper use of memory after it has been freed. This can potentially allow an attacker to execute arbitrary code with kernel privileges. The issue has been addressed with improved memory management.

Recommendations For macOS versions prior to 14, update to macOS Sonoma 14 to resolve the issue. For iOS versions prior to 17, update to iOS 17 to resolve the issue. For iPadOS versions prior to 17, update to iPadOS 17 to resolve the issue.

Correção

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-416

Identificadores relacionados

BDU:2024-00686

CVE-2023-42870

Produtos afetados

Apple Macos

Ios

Ipados

PT-2023-8413 · Apple · Apple Macos+2

CVE-2023-42870

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9