PT-2023-19011 · Apple · Icloud+5

Jubaer Alnazi

Published

2023-03-27

Updated

2023-07-27

CVE-2023-23526

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS Ventura versions prior to 13.3 iOS versions prior to 16.4 iPadOS versions prior to 16.4

Description The issue allows a file from an iCloud shared-by-me folder to bypass Gatekeeper. This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder.

Recommendations For macOS Ventura versions prior to 13.3, update to macOS Ventura 13.3. For iOS versions prior to 16.4, update to iOS 16.4. For iPadOS versions prior to 16.4, update to iPadOS 16.4.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-23526

Affected Products

Gatekeeper

Apple Macos

Icloud

Ios

Ipados

Macos Ventura

PT-2023-19011 · Apple · Icloud+5

CVE-2023-23526

Related Identifiers

Affected Products

References · 5