CVE-2023-38421

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jul 27, 2023

Updated: Aug 3, 2023

Summary

CVE-2023-38421 is a vulnerability affecting macOS that has been addressed in recent updates. This issue allowed for the disclosure of process memory when processing certain 3D models. Specifically, a flaw in the handling of 3D model data led to memory leakage. The vulnerability has been resolved in macOS Ventura 13.5 and macOS Monterey 12.6.8 through improved checks. Users are encouraged to install these updates to protect against potential abuse of this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sD0Xpr
https://www.cve.org/CVERecord?id=CVE-2023-38421
https://nvd.nist.gov/vuln/detail/CVE-2023-38421

Back to Vulnerability Database