CVE-2023-42974

A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.7.2, macOS Ventura 13.6.3, iOS 17.2 and iPadOS 17.2, iOS 16.7.3 and iPadOS 16.7.3, macOS Sonoma 14.2. An app may be able to execute arbitrary code with kernel privileges.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

History

12 Dec 2024, 14:26

Type Values Removed Values Added
CPE cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
First Time Apple ipados

09 Dec 2024, 16:46

Type Values Removed Values Added
References () https://support.apple.com/en-us/HT214034 - () https://support.apple.com/en-us/HT214034 - Vendor Advisory
References () https://support.apple.com/en-us/HT214035 - () https://support.apple.com/en-us/HT214035 - Vendor Advisory
References () https://support.apple.com/en-us/HT214036 - () https://support.apple.com/en-us/HT214036 - Vendor Advisory
References () https://support.apple.com/en-us/HT214037 - () https://support.apple.com/en-us/HT214037 - Vendor Advisory
References () https://support.apple.com/en-us/HT214038 - () https://support.apple.com/en-us/HT214038 - Vendor Advisory
First Time Apple ipad Os
Apple macos
Apple iphone Os
Apple
CPE cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

21 Nov 2024, 08:23

Type Values Removed Values Added
References () https://support.apple.com/en-us/HT214034 - () https://support.apple.com/en-us/HT214034 -
References () https://support.apple.com/en-us/HT214035 - () https://support.apple.com/en-us/HT214035 -
References () https://support.apple.com/en-us/HT214036 - () https://support.apple.com/en-us/HT214036 -
References () https://support.apple.com/en-us/HT214037 - () https://support.apple.com/en-us/HT214037 -
References () https://support.apple.com/en-us/HT214038 - () https://support.apple.com/en-us/HT214038 -

27 Aug 2024, 17:35

Type Values Removed Values Added
CWE CWE-362
Summary
  • (es) Se solucionó una condición de ejecución con un mejor manejo del estado. Este problema se solucionó en macOS Monterey 12.7.2, macOS Ventura 13.6.3, iOS 17.2 y iPadOS 17.2, iOS 16.7.3 y iPadOS 16.7.3, macOS Sonoma 14.2. Una aplicación puede ejecutar código arbitrario con privilegios del kernel.
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.0

28 Mar 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-03-28 16:15

Updated : 2024-12-12 14:26


NVD link : CVE-2023-42974

Mitre link : CVE-2023-42974

CVE.ORG link : CVE-2023-42974


JSON object : View

Products Affected

apple

  • ipados
  • iphone_os
  • ipad_os
  • macos
CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')