CVE-2023-32357

Name of the Vulnerable Software and Affected Versions watchOS versions prior to 9.5 tvOS versions prior to 16.5 macOS Ventura versions prior to 13.4 macOS Big Sur versions prior to 11.7.7 macOS Monterey versions prior to 12.6.6 iOS versions prior to 16.5 iPadOS versions prior to 16.5

Description An authorization issue was addressed with improved state management. This issue may allow an app to retain access to system configuration files even after its permission is revoked, potentially allowing an attacker to access confidential information and preserve user data.

Recommendations For watchOS versions prior to 9.5, update to watchOS 9.5 to resolve the issue. For tvOS versions prior to 16.5, update to tvOS 16.5 to resolve the issue. For macOS Ventura versions prior to 13.4, update to macOS Ventura 13.4 to resolve the issue. For macOS Big Sur versions prior to 11.7.7, update to macOS Big Sur 11.7.7 to resolve the issue. For macOS Monterey versions prior to 12.6.6, update to macOS Monterey 12.6.6 to resolve the issue. For iOS versions prior to 16.5, update to iOS 16.5 to resolve the issue. For iPadOS versions prior to 16.5, update to iPadOS 16.5 to resolve the issue.