CVE-2023-42937

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 23, 2024
Updated: Jan 29, 2024

Summary

CVE-2023-42937 is a privacy vulnerability that affected multiple Apple operating systems, including iOS 16.7.5 and iPadOS 16.7.5, watchOS 10.2, macOS Ventura 13.6.4, macOS Sonoma 14.2, and macOS Monterey 12.7.3. The issue involved inadequate private data redaction for log entries, which could potentially allow an app to access sensitive user data. This vulnerability has been resolved in the latest updates for each affected operating system.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Apple Watch
  • MacOS
  • Apple (iPhone OS)
  • iPadOS
  • WatchOS

Affected Vendors

  • Apple