CVE-2023-42836
CVE-2023-42836
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 5.3EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
21 feb 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.3, macOS Sonoma 14.1, macOS Monterey 12.7.2. An attacker may be able to access connected network volumes mounted in the home directory.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Referencias
https://support.apple.com/en-us/HT213982https://support.apple.com/en-us/HT213984https://support.apple.com/en-us/HT214037https://support.apple.com/en-us/HT214038https://support.apple.com/kb/HT213982https://support.apple.com/kb/HT213984https://support.apple.com/kb/HT214037https://support.apple.com/kb/HT214038