CVE-2023-40427

Name of the Vulnerable Software and Affected Versions macOS versions prior to 13.6 macOS versions prior to 12.7 tvOS versions prior to 17 watchOS versions prior to 10 iOS versions prior to 17 iPadOS versions prior to 17 macOS versions prior to 14

Description The issue is related to insufficient protection of internal data in the Maps component of various Apple operating systems. This may allow an attacker to gain unauthorized access to protected information. An app may be able to read sensitive location information due to the issue. The problem was addressed with improved handling of caches.

Recommendations For macOS versions prior to 13.6, update to macOS Ventura 13.6 to resolve the issue. For macOS versions prior to 12.7, update to macOS Monterey 12.7 to resolve the issue. For tvOS versions prior to 17, update to tvOS 17 to resolve the issue. For watchOS versions prior to 10, update to watchOS 10 to resolve the issue. For iOS versions prior to 17, update to iOS 17 to resolve the issue. For iPadOS versions prior to 17, update to iPadOS 17 to resolve the issue. For macOS versions prior to 14, update to macOS Sonoma 14 to resolve the issue.