CVE-2023-36862

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jul 27, 2023
Updated: Aug 2, 2023

Summary

CVE-2023-36862 is a vulnerability that affects Intel-based Mac computers. It has been fixed in macOS Ventura 13.5 by implementing additional code-signing restrictions. This vulnerability allows an app to determine a user's current location. The risk score for this vulnerability is 26, indicating a medium severity level. The base score is 5.5, and the exploitability score is 1.8. Privileges are not required, but user interaction is required for exploitation. The attack vector is local, and the confidentiality impact is high. The availability impact is none, and integrity impact is none as well.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-36862 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options