CVE-2023-42923

Published: Dec 12, 2023Modified: Nov 4, 2025

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

This issue was addressed through improved state management. This issue is fixed in iOS 17.2 and iPadOS 17.2. Private Browsing tabs may be accessed without authentication.

Affected (2)

Products: Apple: Ipados, Iphone Os

Apple

2 products

Ipados

Iphone Os

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Apple Ipados	Before 17.2
Apple Iphone Os	Before 17.2

References (5)

http://seclists.org/fulldisclosure/2023/Dec/7

Source: product-security@apple.com

Mailing ListThird Party Advisory

https://support.apple.com/en-us/HT214035

Source: product-security@apple.com

Release NotesVendor Advisory

http://seclists.org/fulldisclosure/2023/Dec/7

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://support.apple.com/en-us/HT214035

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/kb/HT214035

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.