CVE-2023-38598
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Jul 28, 2023
Updated: Aug 3, 2023
CWE ID 416
Summary
CVE-2023-38598 is a use-after-free issue that has been addressed through improved memory management in multiple Apple operating systems. Affected versions include watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. This vulnerability allows an application to potentially execute arbitrary code with kernel privileges, posing a significant security risk. Users are strongly encouraged to install the relevant updates as soon as possible to mitigate this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share