CVE-2023-42857

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Oct 25, 2023

Updated: Nov 2, 2023

CWE ID 532

Summary

CVE-2023-42857 is a privacy vulnerability affecting macOS Sonoma 14.0 and older, iOS 17.0 and iPadOS 17.0. The issue stems from insufficient private data redaction in log entries. As a result, certain apps could potentially gain unauthorized access to sensitive user data. This vulnerability has been mitigated with the release of macOS Sonoma 14.1, iOS 17.1, and iPadOS 17.1. It is essential for users to update their systems to ensure the protection of their private information.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
iPadOS
MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAv11
https://www.cve.org/CVERecord?id=CVE-2023-42857
https://nvd.nist.gov/vuln/detail/CVE-2023-42857

Back to Vulnerability Database