exploitDog

CVE-2023-32424

Опубликовано: 10 янв. 2024

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.4 and iPadOS 16.4, watchOS 9.4. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations.

Ссылки

https://support.apple.com/en-us/HT213676
Release Notes
Vendor Advisory
https://support.apple.com/en-us/HT213678
Release Notes
Vendor Advisory
https://support.apple.com/en-us/HT213676
Release Notes
Vendor Advisory
https://support.apple.com/en-us/HT213678
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*

Версия до 16.4 (исключая)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 16.4 (исключая)

cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*

Версия до 9.4 (исключая)

EPSS

Процентиль: 0%

0.00007

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-h7hm-wpfx-4f2x

CVSS3: 5.5

github

около 2 лет назад

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.4 and iPadOS 16.4, watchOS 9.4. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations.

EPSS

Процентиль: 0%

0.00007

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo