CVE-2023-38410

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 27, 2023

Updated: Aug 1, 2023

Summary

CVE-2023-38410 is a privilege escalation vulnerability that affected iOS, iPadOS, and macOS. According to the information provided, a user could potentially exploit this issue to gain elevated privileges. The vulnerability has been resolved in the latest updates for iOS 16.6 and iPadOS 16.6, as well as macOS Ventura 13.5. Apple addressed the issue with improved checks to prevent unauthorized privilege escalation. Users are strongly encouraged to install the latest software updates to protect against potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
iPadOS
MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sD0u_4
https://www.cve.org/CVERecord?id=CVE-2023-38410
https://nvd.nist.gov/vuln/detail/CVE-2023-38410

Back to Vulnerability Database