CVE-2023-40413

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Oct 25, 2023
Updated: Nov 2, 2023

Summary

CVE-2023-40413 is a vulnerability affecting multiple Apple operating systems, including iOS 17.1 and iPadOS 17.1, macOS Monterey 12.7.1, watchOS 10.1, iOS 16.7.2, and iPadOS 16.7.2, macOS Ventura 13.6.1, and macOS Sonoma 14.1. The issue stems from improper cache handling, which could potentially allow a malicious app to access sensitive location information. Apple has released patches to address this vulnerability in the mentioned operating systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Apple (iPhone OS)
  • Apple Watch
  • iPadOS
  • MacOS
  • WatchOS

Affected Vendors

  • Apple