CVE-2023-42897
CVE-2023-42897
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
12 Dec 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The issue was addressed with improved checks. This issue is fixed in iOS 17.2 and iPadOS 17.2. An attacker with physical access may be able to use Siri to access sensitive user data.
Affected products
Apple · iOS and iPadOS