CVE-2023-32381

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 27, 2023
Updated: Aug 2, 2023
CWE ID 416

Summary

CVE-2023-32381 is a vulnerability categorized as CWE-416 (Use After Free). It affects various products, including macOS Monterey 12.6.8, iOS 16.6, iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, and watchOS 9.6. The vulnerability has a base severity of HIGH with a base score of 7.8 according to [email protected]. It can be exploited locally without requiring any privileges and user interaction is required for the exploit to occur. The integrity and confidentiality impacts are both rated as HIGH, while the availability impact is also rated as HIGH. The vulnerability involves a use-after-free issue that could allow an app to execute arbitrary code with kernel privileges. The issue has been addressed and fixed in the mentioned versions of the affected products. Note: The information provided in this response is based on the data provided and does not contain any personal opinions or biases.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-32381 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options