CVE-2023-32411

EUVD-2023-36655
This issue was addressed with improved entitlements. This issue is fixed in tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 2%
Affected Products (NVD)
VendorProductVersion
appleipados
16.0 ≤
𝑥
< 16.5
appleiphone_os
16.0 ≤
𝑥
< 16.5
applemacos
11.0 ≤
𝑥
< 11.7.7
applemacos
12.0 ≤
𝑥
< 12.6.6
applemacos
13.0 ≤
𝑥
< 13.4
appletvos
𝑥
< 16.5
𝑥
= Vulnerable software versions
References
https://support.apple.com/en-us/HT213757
https://support.apple.com/en-us/HT213758
https://support.apple.com/en-us/HT213759
https://support.apple.com/en-us/HT213760
https://support.apple.com/en-us/HT213761
https://support.apple.com/en-us/HT213757
https://support.apple.com/en-us/HT213758
https://support.apple.com/en-us/HT213759
https://support.apple.com/en-us/HT213760
https://support.apple.com/en-us/HT213761