CVE-2023-32378

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 10, 2024

Updated: Jan 18, 2024

CWE ID 416

Summary

CVE-2023-32378 is a use-after-free vulnerability that has been addressed in the latest updates of macOS Ventura 13.3, macOS Big Sur 11.7.5, and macOS Monterey 12.6.4. This issue allows an application to execute arbitrary code with kernel privileges by exploiting improper memory management. The vulnerability could potentially be exploited to gain unauthorized access to sensitive system data or take control of the affected system. It is recommended that users install the latest software updates to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tOTt8K
https://www.cve.org/CVERecord?id=CVE-2023-32378
https://nvd.nist.gov/vuln/detail/CVE-2023-32378

Back to Vulnerability Database