CVE-2023-42869

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 10, 2024

Updated: Jan 17, 2024

CWE ID 787

Summary

CVE-2023-42869 refers to multiple memory corruption vulnerabilities discovered in macOS Ventura, iOS 16.5, and iPadOS 16.5, specifically in the libxml2 library. These issues, now resolved, could potentially allow malicious actors to execute arbitrary code or cause a denial-of-service condition. By improving input validation, Apple has mitigated the risk of exploitation. Users are advised to update their systems to the latest versions to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
MacOS
iPadOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAfpC
https://www.cve.org/CVERecord?id=CVE-2023-42869
https://nvd.nist.gov/vuln/detail/CVE-2023-42869

Back to Vulnerability Database