CVSS 3.1 Score 7.8 of 10 (high)


Published Sep 7, 2023
Updated: Sep 22, 2023
CWE ID 120


CVE-2023-41064 is a buffer overflow vulnerability that affects multiple Apple products, including iOS, iPadOS, and macOS. The issue has been fixed in iOS 16.6.1 and iPadOS 16.6.1, macOS Monterey 12.6.9, macOS Ventura 13.5.2, iOS 15.7.9 and iPadOS 15.7.9, and macOS Big Sur 11.7.10. Exploiting this vulnerability involves processing a specially crafted image, which could potentially result in arbitrary code execution on the affected devices. Apple has acknowledged a report indicating that this vulnerability may have been actively exploited. The severity of this vulnerability is rated as high, with a base score of 7.8 out of 10 according to the Common Vulnerability Scoring System (CVSS).

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-41064 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options