PT-2023-18985 · Apple · Apple Macos

Norpoth

Published

2023-01-23

Updated

2023-03-08

CVE-2023-23493

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions macOS versions prior to 13.2 macOS Monterey versions prior to 12.6.3

Description A logic issue was addressed with improved state management. This issue allows an encrypted volume to be unmounted and remounted by a different user without prompting for the password.

Recommendations For macOS versions prior to 13.2, update to macOS Ventura 13.2. For macOS Monterey versions prior to 12.6.3, update to macOS Monterey 12.6.3.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2023-23493

Affected Products

Apple Macos

PT-2023-18985 · Apple · Apple Macos

CVE-2023-23493

Weakness Enumeration

Related Identifiers

Affected Products

References · 5