CVE-2023-32395: Use After Free
First published: Thu May 18 2023(Updated: )
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system.
Credit: Arsenii Kostromin (0x3c3e) product-security@apple.com Rodolphe BRUNETTI @eisw0lf Lupus NovaKirin @Pwnrin 7feilee Hossein Lotfi @hosselot Trend Micro Zero Day InitiativeGary Kwong Anonymous Trend Micro Zero Day InitiativeJunsung Lee Trend Micro Zero Day InitiativeYe Zhang @VAR10CK Baidu Securityan anonymous researcher Joseph Ravichandran @0xjprx MIT CSAILsohybbyk Hyerean Jang Taehun Kim Youngjoo Shin CVE-2024-45490 风沐云烟 @binary_fmyy Meng Zhang (鲸落) NorthSeaClaudio Bozzato Cisco TalosFrancesco Benvenuto Cisco Talos神罚 @Pwnrin Mickey Jin @patch1t Bohdan Stasiuk @Bohdan_Stasiuk Abhay Kailasia @abhay_kailasia CRakeshkumar Talaviya Talal Haj Bakry Mysk IncTommy Mysk @mysk_co Mysk IncJacob Braun Rei @reizydev Kenneth Chew Michael DePlante @izobashi Trend Micro's Zero Day InitiativeYokesh Muthu K Mickey Jin @patch1t MicrosoftJonathan Bar Or @yo_yo_yo_jbo MicrosoftAmy @asentientbot Rodolphe BRUNETTI @eisw0lf CVE-2024-45306 Seunghyun Lee Brendon Tiszka Google Project Zerolinjy HKUS3Labchluo WHUSecLabXiangwei Zhang Tencent Security YUNDING LABTashita Software Security Lukas Bernhard Halle Winkler Politepix theoffcuts.org Trent Lloyd @lathiat D’Angelo Gonzalez CrowdStrikeSmi1e @Smi1eSEC Michael Cohen Mickey Jin @patch1t KandjiCsaba Fitzl @theevilbit KandjiD4m0n CertiK SkyFall Team Dillon Franke Google Project ZeroBenjamin Hornbeck ZUSO ARTSkadz @skadz108 ZUSO ARTChi Yuan Chang ZUSO ARTtaikosoup Thijs Alkemade Computest Sector 7Jonathan Fritz Julian Szulc Holger Fuhrmannek Deutsche Telekom Security GmbH on behalf of BSIYiğit Can YILMAZ @yilmazcanyigit FFRI Security IncKoh M. Nakagawa FFRI Security IncKirin @Pwnrin Offensive SecurityJeff Johnson (underpassapp.com) Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJames Duffy (mangoSecure) Wenchao Li Alibaba GroupXiaolong Bai Alibaba GroupMickey Jin @patch1t Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabKhiem Tran Gergely Kalman @gergely_kalman SecuRing SecuRingWojciech Reguła SecuRingYiğit Can YILMAZ @yilmazcanyigit CVE-2023-22809 Satish Panduranga Ivan Fratric Google Project ZeroAdam M. Wojciech Regula SecuRingIgnacio Sanmillan @ulexec Clément Lecigne Google's Threat Analysis GroupDonncha Ó Cearbhaill Amnesty InternationalPan ZhenPeng @Peterpan0927 STAR Labs SG PteGerhard Muth Dimitrios Tatsis Cisco TalosZitong Wu (吴梓桐) Zhuhai NoMeysam Firouzi @R00tkitSMM Mbition MercedesMeysam Firouzi @R00tkitsmm Trend Micro Zero Day Initiativehou xuewei vmk msu @p1ay8y3ar CertiK SkyFall Team Pinauten GmbHLinus Henze Pinauten GmbH08Tc3wBB JamfAdam Doupé ASU SEFCOMEloi Benoist-Vanderbeken @elvanderb SynacktivWojciech Reguła @_r3ggi SecuRingOSS-Fuzz Google Project ZeroNed Williamson Google Project ZeroJonathan Bar Or MicrosoftAnurag Bohra Microsoft MicrosoftMichael Pearse MicrosoftThijs Alkemade @xnyhps Computest Sector 7Gergely Kalman @gergely_kalman Michael DePlante @izobashi Trend Micro Zero Day InitiativeSergii Kryvoblotskyi MacPaw IncABC Research s.r.o.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple macOS | <11.7.7 | 11.7.7 |
| Apple iOS and macOS | >=11.0<11.7.7 | |
| Apple iOS and macOS | >=12.0.0<12.6.6 | |
| Apple iOS and macOS | >=13.0<13.4 | |
| macOS | <12.6.6 | 12.6.6 |
| macOS | <15.2 | 15.2 |
| macOS Ventura | <13.4 | 13.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT213758 (Advisory)
- https://support.apple.com/en-us/HT213759 (Advisory)
- https://support.apple.com/en-us/HT213760 (Advisory)
- https://support.apple.com/kb/HT213760
- https://support.apple.com/kb/HT213759
- https://support.apple.com/en-us/121839 (Advisory)
- https://support.apple.com/en-us/106333 (Advisory)
- https://support.apple.com/kb/HT213758
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2023-32388
- CVE-2023-28191
- CVE-2023-32411
- CVE-2023-32383
- CVE-2023-32386
- CVE-2023-28181
- CVE-2023-32360
- CVE-2023-32387
- CVE-2023-27945
- CVE-2023-32392
- CVE-2023-32384
- CVE-2023-32410
- CVE-2023-32413
- CVE-2023-32398
- CVE-2023-32352
- CVE-2023-32369
- CVE-2023-32405
- CVE-2023-32407
- CVE-2023-32380
- CVE-2023-32382
- CVE-2023-32403
- CVE-2023-32355
- CVE-2023-32395
- CVE-2023-32401
- CVE-2023-32357
- CVE-2023-32397
- CVE-2023-32412
- CVE-2023-23535
- CVE-2023-27940
- CVE-2023-32428
- CVE-2023-32375
- CVE-2023-32368
- CVE-2023-32408
- CVE-2024-54488
- CVE-2024-54541
- CVE-2024-54477
- CVE-2024-44220
- CVE-2024-54526
- CVE-2024-54527
- CVE-2024-54490
- CVE-2024-54509
- CVE-2024-54529
- CVE-2024-54550
- CVE-2024-54513
- CVE-2024-44300
- CVE-2024-54466
- CVE-2024-54489
- CVE-2024-54547
- CVE-2024-54519
- CVE-2024-54486
- CVE-2024-44291
- CVE-2024-54478
- CVE-2024-54499
- CVE-2024-54500
- CVE-2024-54517
- CVE-2024-54518
- CVE-2024-54522
- CVE-2024-54523
- CVE-2024-54506
- CVE-2024-54468
- CVE-2024-54507
- CVE-2024-54494
- CVE-2024-54510
- CVE-2024-44245
- CVE-2024-54531
- CVE-2024-54465
- CVE-2024-45490
- CVE-2024-54514
- CVE-2024-44225
- CVE-2024-54491
- CVE-2024-54484
- CVE-2024-54536
- CVE-2024-54504
- CVE-2024-54474
- CVE-2024-54476
- CVE-2024-54530
- CVE-2024-54492
- CVE-2024-54497
- CVE-2024-54537
- CVE-2024-44246
- CVE-2024-54542
- CVE-2024-54501
- CVE-2024-54557
- CVE-2024-54516
- CVE-2024-54515
- CVE-2024-54528
- CVE-2024-54524
- CVE-2024-54498
- CVE-2024-54493
- CVE-2024-44243
- CVE-2024-44224
- CVE-2024-54495
- CVE-2024-54549
- CVE-2024-54475
- CVE-2024-54520
- CVE-2024-45306
- CVE-2024-54485
- CVE-2024-54479
- CVE-2024-54502
- CVE-2024-54508
- CVE-2024-54505
- CVE-2024-54534
- CVE-2024-54543
- CVE-2024-54539
- CVE-2023-32400
- CVE-2023-34352
- CVE-2023-32379
- CVE-2023-32371
- CVE-2023-32399
- CVE-2023-32414
- CVE-2023-32417
- CVE-2023-32372
- CVE-2023-32420
- CVE-2023-27930
- CVE-2023-29469
- CVE-2023-42869
- CVE-2023-42958
- CVE-2023-32437
- CVE-2023-32385
- CVE-2023-32390
- CVE-2023-32363
- CVE-2023-32367
- CVE-2023-32432
- CVE-2023-32391
- CVE-2023-32404
- CVE-2023-32394
- CVE-2023-32422
- CVE-2023-32376
- CVE-2023-22809
- CVE-2023-28202
- CVE-2023-32415
- CVE-2023-32402
- CVE-2023-32423
- CVE-2023-32409
- CVE-2023-28204
- CVE-2023-32373
- CVE-2023-32389
- agent/type
- agent/first-publish-date
- agent/severity
- collector/mitre-cve
- source/MITRE
- agent/trending
- agent/source
- collector/apple-support
- source/Apple
- agent/software-canonical-lookup-request
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/event
- agent/weakness
- agent/references
- agent/softwarecombine
- agent/description
- agent/tags
- agent/author
- collector/nvd-api
- source/NVD
- collector/nvd-index
- alias/CVE-2024-54474
- alias/CVE-2024-54476
- alias/CVE-2024-54530
- alias/CVE-2024-54492
- alias/CVE-2023-32395
- alias/CVE-2024-54497
- alias/CVE-2024-54537
- alias/CVE-2024-44246
- alias/CVE-2024-54542
- alias/CVE-2024-54501
- alias/CVE-2024-54557
- alias/CVE-2024-54516
- alias/CVE-2024-54515
- alias/CVE-2024-54528
- alias/CVE-2024-54524
- alias/CVE-2024-54498
- alias/CVE-2024-54493
- alias/CVE-2024-44243
- alias/CVE-2024-44224
- alias/CVE-2024-54495
- alias/CVE-2024-54549
- alias/CVE-2024-54475
- alias/CVE-2024-54520
- alias/CVE-2024-45306
- alias/CVE-2024-54485
- alias/CVE-2024-54479
- alias/CVE-2024-54502
- alias/CVE-2024-54508
- alias/CVE-2024-54505
- alias/CVE-2024-54534
- alias/CVE-2024-54543
- alias/CVE-2024-54539
- alias/CVE-2024-54466
- alias/CVE-2024-54489
- alias/CVE-2024-54547
- alias/CVE-2024-54519
- alias/CVE-2024-54486
- alias/CVE-2024-44291
- alias/CVE-2024-54478
- alias/CVE-2024-54499
- alias/CVE-2024-54500
- alias/CVE-2024-54517
- alias/CVE-2024-54518
- alias/CVE-2024-54522
- alias/CVE-2024-54523
- alias/CVE-2024-54506
- alias/CVE-2024-54468
- alias/CVE-2024-54507
- alias/CVE-2024-54494
- alias/CVE-2024-54510
- alias/CVE-2024-44245
- alias/CVE-2024-54531
- alias/CVE-2024-54465
- alias/CVE-2024-45490
- alias/CVE-2024-54514
- alias/CVE-2024-44225
- alias/CVE-2024-54491
- alias/CVE-2024-54484
- alias/CVE-2024-54536
- alias/CVE-2024-54504
- alias/CVE-2024-54526
- alias/CVE-2024-54527
- alias/CVE-2024-54490
- alias/CVE-2024-54509
- alias/CVE-2024-54529
- alias/CVE-2024-54550
- alias/CVE-2024-54513
- alias/CVE-2024-44300
- alias/CVE-2024-54541
- alias/CVE-2024-54477
- alias/CVE-2024-44220
- alias/CVE-2023-32413
- alias/CVE-2023-32352
- alias/CVE-2023-29469
- alias/CVE-2023-42869
- alias/CVE-2023-32369
- alias/CVE-2023-32405
- alias/CVE-2023-32428
- alias/CVE-2023-32407
- alias/CVE-2023-42958
- alias/CVE-2023-32368
- alias/CVE-2023-32375
- alias/CVE-2023-32382
- alias/CVE-2023-32380
- alias/CVE-2023-32403
- alias/CVE-2023-32437
- alias/CVE-2023-32355
- alias/CVE-2023-32385
- alias/CVE-2023-32390
- alias/CVE-2023-32401
- alias/CVE-2023-32357
- alias/CVE-2023-32363
- alias/CVE-2023-32367
- alias/CVE-2023-32432
- alias/CVE-2023-32397
- alias/CVE-2023-32391
- alias/CVE-2023-32404
- alias/CVE-2023-32394
- alias/CVE-2023-32422
- alias/CVE-2023-32376
- alias/CVE-2023-22809
- alias/CVE-2023-28202
- alias/CVE-2023-32412
- alias/CVE-2023-32408
- alias/CVE-2023-32415
- alias/CVE-2023-32402
- alias/CVE-2023-32423
- alias/CVE-2023-32409
- alias/CVE-2023-28204
- alias/CVE-2023-32373
- alias/CVE-2023-32389
- alias/CVE-2023-32414
- alias/CVE-2023-32417
- alias/CVE-2023-32392
- alias/CVE-2023-32372
- alias/CVE-2023-32384
- alias/CVE-2023-32410
- alias/CVE-2023-32420
- alias/CVE-2023-27930
- alias/CVE-2023-27940
- alias/CVE-2023-32398
- alias/CVE-2023-32386
- alias/CVE-2023-32399
- alias/CVE-2023-28191
- alias/CVE-2023-32360
- alias/CVE-2023-32387
- alias/CVE-2023-32400
- alias/CVE-2023-34352
- alias/CVE-2023-32379
- alias/CVE-2023-32411
- alias/CVE-2023-32383
- alias/CVE-2023-32371
- vendor/apple
- canonical/apple macos
- canonical/apple ios and macos
- version/apple ios and macos/11.0
- version/apple ios and macos/12.0.0
- version/apple ios and macos/13.0
- canonical/macos
- canonical/macos ventura