CVE-2023-42861

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 25, 2023

Updated: Jun 10, 2024

CWE ID 732

Summary

CVE-2023-42861 is a vulnerability affecting macOS Sonoma that has been addressed in version 14.1. This issue involves a logic problem with state management, which could allow an attacker with standard user credentials to bypass the locked screen of another standard user on the same Mac. Successful exploitation of this vulnerability does not require elevated privileges, increasing the potential attack surface. The improvement in state management serves to mitigate this issue and safeguard user security.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAd8B
https://www.cve.org/CVERecord?id=CVE-2023-42861
https://nvd.nist.gov/vuln/detail/CVE-2023-42861

Back to Vulnerability Database