CVE-2023-42899

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 12, 2023

Updated: Dec 14, 2023

Summary

CVE-2023-42899 is a vulnerability affecting multiple Apple operating systems, including macOS Sonoma, iOS, iPadOS, watchOS, macOS Ventura, tvOS, and iOS 16. The issue involves improper memory handling during the processing of an image, which can result in arbitrary code execution. This vulnerability has been resolved in the latest updates for macOS Sonoma 14.2, iOS 17.2, iPadOS 17.2, watchOS 10.2, macOS Ventura 13.6.3, tvOS 17.2, iOS 16.7.3, and iPadOS 16.7.3. It's essential to install these updates to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
Apple Watch
iPadOS
tvOS
MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAa0S
https://www.cve.org/CVERecord?id=CVE-2023-42899
https://nvd.nist.gov/vuln/detail/CVE-2023-42899

Back to Vulnerability Database