CVE-2023-48417

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 11, 2023

Updated: Dec 13, 2023

CWE ID 862

Summary

CVE-2023-48417 is a vulnerability affecting the KeyChainActivity application. This issue arises due to missing permission checks, allowing unauthorized access and manipulation. An attacker can exploit this flaw to gain control over sensitive data stored in the application, potentially leading to significant security risks. The vulnerability could be exploited through various means, such as malicious code or phishing attacks. It is recommended that users update the application to the latest version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tcDcVE
https://www.cve.org/CVERecord?id=CVE-2023-48417
https://nvd.nist.gov/vuln/detail/CVE-2023-48417

Back to Vulnerability Database

CVE-2023-48417

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations