CVE-2023-40432

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 27, 2023

Updated: Nov 7, 2023

Summary

CVE-2023-40432 is a newly identified vulnerability that could allow malicious apps to gain kernel privileges. The flaw stems from inadequate memory handling. Apple has addressed this issue in the latest tvOS 17, iOS 17, iPadOS 17, watchOS 10, and macOS Sonoma 14 releases. Before the patch, an exploit of this vulnerability could result in arbitrary code execution, posing a significant security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sWFKt-
https://www.cve.org/CVERecord?id=CVE-2023-40432
https://nvd.nist.gov/vuln/detail/CVE-2023-40432

Back to Vulnerability Database

CVE-2023-40432

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations