PT-2023-18989 · Apple · Macos Big Sur+3

Mickey Jin

Published

2023-01-23

Updated

2025-03-11

CVE-2023-23497

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS Big Sur versions 11.7.3 and earlier macOS Monterey versions 12.6.3 and earlier macOS Ventura versions 13.2 and earlier

Description A logic issue was addressed with improved state management, which could allow an app to gain root privileges.

Recommendations For macOS Big Sur version 11.7.3 and earlier, update to macOS Big Sur 11.7.3 or later. For macOS Monterey version 12.6.3 and earlier, update to macOS Monterey 12.6.3 or later. For macOS Ventura version 13.2 and earlier, update to macOS Ventura 13.2 or later.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2023-23497

Affected Products

Apple Macos

Macos Big Sur

Macos Monterey

Macos Ventura

PT-2023-18989 · Apple · Macos Big Sur+3

CVE-2023-23497

Weakness Enumeration

Related Identifiers

Affected Products

References · 7