CVE-2023-42848
CVE-2023-42848
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 7.8EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
21 fev 2024Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
The issue was addressed with improved bounds checks. This issue is fixed in watchOS 10.1, macOS Sonoma 14.1, tvOS 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.1. Processing a maliciously crafted image may lead to heap corruption.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Referências
https://support.apple.com/en-us/HT213981https://support.apple.com/en-us/HT213982https://support.apple.com/en-us/HT213984https://support.apple.com/en-us/HT213985https://support.apple.com/en-us/HT213987https://support.apple.com/en-us/HT213988https://support.apple.com/kb/HT213982https://support.apple.com/kb/HT213984https://support.apple.com/kb/HT213988