CVE-2023-42886

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 12, 2023

Updated: Dec 13, 2023

CWE ID 125

Summary

CVE-2023-42886 is an out-of-bounds read vulnerability that has been identified and addressed in macOS Sonoma 14.2, macOS Ventura 13.6.3, and macOS Monterey 12.7.2. This issue could potentially allow a user to cause unexpected app termination or execute arbitrary code, making it a significant security concern. The vulnerability was due to insufficient bounds checking, which has now been improved to mitigate the risk. Despite the fix, users are advised to update their operating systems as soon as possible to protect against potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAfnD
https://www.cve.org/CVERecord?id=CVE-2023-42886
https://nvd.nist.gov/vuln/detail/CVE-2023-42886

Back to Vulnerability Database