CVSS 3.1 Score 5.5 of 10 (medium)


Published Jan 23, 2024
Updated: Jan 29, 2024


CVE-2023-42937 is a privacy issue that affects various products, including iOS, iPadOS, watchOS, and macOS. The vulnerability allows an app to access sensitive user data. The issue has been fixed in specific versions of these operating systems. To remediate the vulnerability, users should update their devices to iOS 16.7.5 and iPadOS 16.7.5, watchOS 10.2, macOS Ventura 13.6.4, macOS Sonoma 14.2, macOS Monterey 12.7.3, iOS 17.2, or iPadOS 17.2. The vulnerability poses a medium risk with a base score of 5.5 and a confidentiality impact of high according to NIST's CVSS scoring system for cyber vulnerabilities.

Note: This summary is based on the provided information and does not include any additional sources beyond the given data from NIST's National Vulnerability Database (NVD).

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-42937 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options