CVE-2023-40399

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 27, 2023

Updated: Nov 7, 2023

Summary

CVE-2023-40399 is a recently identified vulnerability that affected various Apple operating systems, including tvOS 16, iOS 16, iPadOS 16, watchOS 9, and macOS Ventura 13. The issue stemmed from insufficient memory handling within the affected systems, enabling an application to potentially access kernel memory. This disclosure of sensitive memory information posed a significant security risk. Apple has since addressed this vulnerability with improved memory handling across tvOS 17, iOS 17, iPadOS 17, watchOS 10, and macOS Sonoma 14.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sWE-kI
https://www.cve.org/CVERecord?id=CVE-2023-40399
https://nvd.nist.gov/vuln/detail/CVE-2023-40399

Back to Vulnerability Database

CVE-2023-40399

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations