CVSS 3.1 Score 6.5 of 10 (medium)


Published Oct 25, 2023
Updated: Nov 2, 2023
CWE ID 732


CVE-2023-42861 is a logic issue vulnerability that affects macOS Sonoma version 14.1. It allows an attacker with knowledge of a standard user's credentials to unlock another standard user's locked screen on the same Mac. The vulnerability has a base severity rating of MEDIUM, with a base score of 6.5 out of 10. The privileges required for exploitation are low, and there is no user interaction necessary. The attack vector is through the network, and the impact on integrity is high. However, there is no impact on confidentiality. The vulnerability has not been changed since its discovery and has an exploitability score of 2.8 out of 10. Organizations using affected versions of macOS Sonoma should update to version 14.1 to remediate the issue and mitigate potential risks to their systems.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-42861 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options