PT-2024-1271 · Apple · Ipados+1

Aymane Chabat

Published

2024-01-10

Updated

2024-01-17

CVE-2023-42941

CVSS v3.1

4.8

Medium

Vector

AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions iOS versions prior to 17.2 iPadOS versions prior to 17.2

Description The issue exists due to insufficient input validation in the Bluetooth component of the operating systems. An attacker in a privileged network position may be able to perform a denial-of-service attack using crafted Bluetooth packets. This can cause a denial of service.

Recommendations For iOS versions prior to 17.2, update to iOS 17.2 to resolve the issue. For iPadOS versions prior to 17.2, update to iPadOS 17.2 to resolve the issue.

Fix

Resource Exhaustion

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-20

Related Identifiers

BDU:2024-00697

CVE-2023-42941

Affected Products

Ios

Ipados

PT-2024-1271 · Apple · Ipados+1

CVE-2023-42941

Weakness Enumeration

Related Identifiers

Affected Products

References · 7