CVE-2023-41064

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 7, 2023

Updated: Jun 21, 2024

CWE ID 120

Summary

CVE-2023-41064 is a buffer overflow vulnerability that Apple addressed in various operating systems, including iOS 16.6.1 and iPadOS 16.6.1, macOS Monterey 12.6.9, macOS Ventura 13.5.2, iOS 15.7.9, and iPadOS 15.7.9, as well as macOS Big Sur 11.7.10. This issue can be exploited by processing a specially crafted image, which may result in arbitrary code execution. Apple confirmed that this vulnerability had been actively exploited before its patch release.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
MacOS
iPadOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sbNBAu
https://www.cve.org/CVERecord?id=CVE-2023-41064
https://nvd.nist.gov/vuln/detail/CVE-2023-41064

Back to Vulnerability Database