CVSS 3.1 Score 3.3 of 10 (low)


Published Jan 10, 2024
Updated: Jan 18, 2024


CVE-2023-28197 is an access issue that has been addressed with additional sandbox restrictions in macOS Ventura 13.3, macOS Big Sur 11.7.5, and macOS Monterey 12.6.4. The vulnerability affects multiple products, including olr5Ul, j7Q-TL, kmPBm1, and many others. An app exploiting this vulnerability may be able to access user-sensitive data. The risk score for this vulnerability is 15, indicating a moderate level of danger. The base severity is classified as low, with a base score of 3.3. The exploitability score is 1.8, signifying a relatively low likelihood of exploitation but not impossible. This vulnerability requires user interaction and has a local attack vector, meaning an attacker would need to have physical or local access to the system to exploit it. Confidentiality impact is classified as low, while integrity impact is none and availability impact is none according to the CVSS vector string provided by NIST.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-28197 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options