CVE-2023-23543

Published: May 8, 2023Modified: Jan 29, 2025

3.6

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

Exploitability: 1.8 / Impact: 1.4

Source: NVD

Description

The issue was addressed with additional restrictions on the observability of app states. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, iOS 16.4 and iPadOS 16.4, watchOS 9.4. A sandboxed app may be able to determine which app is currently using the camera.

Affected (5)

Products: Apple: Ipados, Iphone Os, Macos

3 products

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Apple Ipados	Before 15.7.4
Apple Ipados	From 16.0 to 16.4
Apple Iphone Os	Before 15.7.4
Apple Iphone Os	From 16.0 to 16.4
Apple Macos	Before 13.3

References (8)

https://support.apple.com/en-us/HT213670

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213673

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213676

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213678

Source: product-security@apple.com

https://support.apple.com/en-us/HT213670

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213673

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213676

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213678

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.