PT-2023-5811 · Apple · Ios+3

Freshman

Published

2023-01-23

Updated

2024-12-12

CVE-2023-28208

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions macOS Ventura versions prior to 13.2 iOS versions prior to 16.3 iPadOS versions prior to 16.3

Description A logic issue was addressed with improved state management, which may allow a user to send a text from a secondary eSIM despite configuring a contact to use a primary eSIM. This issue is related to errors in state management in the Messages component of the operating systems.

Recommendations For macOS Ventura versions prior to 13.2, update to macOS Ventura 13.2 to resolve the issue. For iOS versions prior to 16.3, update to iOS 16.3 to resolve the issue. For iPadOS versions prior to 16.3, update to iPadOS 16.3 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-371

Related Identifiers

BDU:2023-06497

CVE-2023-28208

Affected Products

Apple Macos

Ios

Ipados

Macos Ventura

PT-2023-5811 · Apple · Ios+3

CVE-2023-28208

Weakness Enumeration

Related Identifiers

Affected Products

References · 11