CVE-2023-41991

CVSS 5.5 MEDIUMEPSS 4.5%● KEVCWE-295

In short

A flaw in certificate validation allowed malicious apps to bypass signature checks on Apple devices. This could let attackers run unauthorized code or impersonate trusted applications.

Technical detail

CWE-295 certificate validation bypass affecting iOS, iPadOS, and macOS. A malicious app could circumvent signature verification mechanisms through improper certificate validation logic. The vulnerability has been exploited in the wild against iOS versions prior to 16.7; fixed in macOS Ventura 13.6, iOS 16.7, and iPadOS 16.7.

Summary generated and translated by AI from the official description.

A certificate validation issue was addressed. This issue is fixed in macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7. A malicious app may be able to bypass signature validation. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Affected products

Apple · iOS and iPadOS Apple · macOS

public PoCs found — 2

githubgithub.com/itsgiddd/CVE-2023-41991★ 6 githubgithub.com/dmytrozykov/appsign★ 1

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://support.apple.com/en-us/HT213927 https://support.apple.com/en-us/HT213931 https://support.apple.com/kb/HT213927 https://support.apple.com/kb/HT213931 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-41991