First published: Mon Mar 27 2023(Updated: )
A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to read sensitive location information
Credit: Guilherme Rambo Best Buddy AppsGuilherme Rambo Best Buddy AppsGuilherme Rambo Best Buddy Apps product-security@apple.com product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS | >=11.0<11.7.5 | |
Apple macOS | >=12.0<12.6.4 | |
Apple macOS | >=13.0<13.3 | |
<12.6.4 | 12.6.4 | |
<11.7.5 | 11.7.5 | |
Apple macOS Ventura | <13.3 | 13.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2023-28192 is a vulnerability in the System Settings of macOS that allows an app to read sensitive location information due to a permissions issue.
The severity of CVE-2023-28192 is medium with a severity value of 5.5.
The affected software for CVE-2023-28192 includes macOS Ventura 13.3, macOS Monterey 12.6.4, and macOS Big Sur 11.7.5.
To fix CVE-2023-28192, update your macOS to the fixed versions: macOS Ventura 13.3, macOS Monterey 12.6.4, and macOS Big Sur 11.7.5.
More information about CVE-2023-28192 can be found on the Apple support page: [link](https://support.apple.com/en-us/HT213675).