CVE-2023-42904

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 12, 2023

Updated: Dec 13, 2023

CWE ID 787

Summary

CVE-2023-42904 is a memory corruption vulnerability affecting macOS Sonoma. The issue was caused by insufficient input validation, leading to unexpected app termination or arbitrary code execution when processing a specially crafted file. Apple addressed this vulnerability in macOS Sonoma 14.2 by improving input validation to prevent potential exploitation. This issue posed a significant risk to macOS users, making it essential to update the operating system to the latest version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAd8j
https://www.cve.org/CVERecord?id=CVE-2023-42904
https://nvd.nist.gov/vuln/detail/CVE-2023-42904

Back to Vulnerability Database