CVSS 3.1 Score 4.3 of 10 (medium)


Published Oct 25, 2023
Updated: Nov 2, 2023


CVE-2023-42438 is an inconsistent user interface issue that has been fixed in macOS Sonoma 14.1. This vulnerability affects the tPHKIZ product and can lead to user interface spoofing when visiting a malicious website. The risk score for this vulnerability is 5, indicating a significant potential danger to organizations. The base severity is rated as MEDIUM, with a base score of 4.3. Exploiting this vulnerability does not require any privileges, but user interaction is required. The attack vector is through the network, and the integrity impact is low while the confidentiality impact is none. The exploitability score is 2.8, suggesting that it may be relatively easy to exploit. It is important for organizations using affected versions of macOS Sonoma to update to version 14.1 to remediate this vulnerability and mitigate the potential risks it poses.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-42438 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options