CVE-2023-36862

Name of the Vulnerable Software and Affected Versions macOS versions prior to 13.5

Description A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue may allow an app to determine a user’s current location. The vulnerability is related to errors in security settings, which can be exploited to bypass security restrictions and gain unauthorized access to protected information.

Recommendations For versions prior to 13.5, update to macOS Ventura 13.5 to resolve the issue. As a temporary workaround, consider restricting access to sensitive location data until the update is applied.