CVE-2023-42911

CVSS 3.1 Score 7.8 of 10 (high)

Attack Complexity low
Confidentiality high
Integrity high
Availability high
Scope unchanged
Privileges Required none

Details

Published Dec 12, 2023
Updated: Dec 13, 2023
CWE ID 787

Summary

CVE-2023-42911 is a memory corruption vulnerability affecting macOS Sonoma. The issue was caused by insufficient input validation, which could result in unexpected app termination or even arbitrary code execution upon processing a specially crafted file. Apple has addressed this vulnerability in macOS Sonoma 14.2 by improving input validation to prevent potential exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share