CVE-2023-32358

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 14, 2023

Updated: Aug 19, 2023

CWE ID 843

Summary

CVE-2023-32358 is a type confusion vulnerability that has been addressed in iOS 16.4 and iPadOS 16.4, as well as macOS Ventura 13.3. This issue arises when processing web content and can potentially result in arbitrary code execution, allowing attackers to gain unauthorized access to user data or execute malicious code. By improving checks, Apple has mitigated the risk of exploitation, safeguarding users against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
iPadOS
MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sMQT9C
https://www.cve.org/CVERecord?id=CVE-2023-32358
https://nvd.nist.gov/vuln/detail/CVE-2023-32358

Back to Vulnerability Database