CVE-2023-42844

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 25, 2023

Updated: Nov 2, 2023

CWE ID 59

Summary

CVE-2023-42844 is a vulnerability affecting multiple versions of macOS, including Sonoma 14.1, Monterey 12.7.1, and Ventura 13.6.1. The issue involves improper handling of symlinks, enabling a website to potentially gain access to sensitive user data during the symlink resolution process. This vulnerability has been addressed through updates to the operating systems mentioned above.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAoH0
https://www.cve.org/CVERecord?id=CVE-2023-42844
https://nvd.nist.gov/vuln/detail/CVE-2023-42844

Back to Vulnerability Database