CVE-2023-42923

This issue was addressed through improved state management. This issue is fixed in iOS 17.2 and iPadOS 17.2. Private Browsing tabs may be accessed without authentication.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
appleipados
𝑥
< 17.2
appleiphone_os
𝑥
< 17.2
𝑥
= Vulnerable software versions
References
http://seclists.org/fulldisclosure/2023/Dec/7
https://support.apple.com/en-us/HT214035
http://seclists.org/fulldisclosure/2023/Dec/7
https://support.apple.com/en-us/HT214035
https://support.apple.com/kb/HT214035