CVE-2023-23503

EUVD-2023-27603
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3, iOS 15.7.3 and iPadOS 15.7.3, tvOS 16.3, watchOS 9.3. An app may be able to bypass Privacy preferences.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
Affected Products (NVD)
VendorProductVersion
appleipados
𝑥
< 15.7.3
appleipados
16.0 ≤
𝑥
< 16.3
appleiphone_os
𝑥
< 15.7.3
appleiphone_os
16.0 ≤
𝑥
< 16.3
applemacos
𝑥
< 13.2
appletvos
𝑥
< 16.3
applewatchos
𝑥
< 9.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.apple.com/en-us/HT213598
https://support.apple.com/en-us/HT213599
https://support.apple.com/en-us/HT213601
https://support.apple.com/en-us/HT213605
https://support.apple.com/en-us/HT213606
https://support.apple.com/en-us/HT213598
https://support.apple.com/en-us/HT213599
https://support.apple.com/en-us/HT213601
https://support.apple.com/en-us/HT213605
https://support.apple.com/en-us/HT213606