CVE-2023-32397
First published: Thu May 18 2023(Updated: )
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system.
Credit: Arsenii Kostromin (0x3c3e) Arsenii Kostromin (0x3c3e) Arsenii Kostromin (0x3c3e) Arsenii Kostromin (0x3c3e) product-security@apple.com product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| <13.4 | 13.4 | |
| <12.6.6 | 12.6.6 | |
| Apple macOS Big Sur | <11.7.7 | 11.7.7 |
| Apple iOS | <15.7.6 | 15.7.6 |
| Apple iPadOS | <15.7.6 | 15.7.6 |
| Apple iPadOS | <15.7.6 | |
| Apple iPhone OS | <15.7.6 | |
| Apple macOS | >=11.0<11.7.7 | |
| Apple macOS | >=12.0<12.6.6 | |
| Apple macOS | >=13.0<13.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2023-32388
- CVE-2023-28191
- CVE-2023-32411
- CVE-2023-32383
- CVE-2023-32386
- CVE-2023-32360
- CVE-2023-32387
- CVE-2023-27945
- CVE-2023-32392
- CVE-2023-23535
- CVE-2023-32384
- CVE-2023-32410
- CVE-2023-27940
- CVE-2023-32413
- CVE-2023-32398
- CVE-2023-32352
- CVE-2023-32369
- CVE-2023-32405
- CVE-2023-32428
- CVE-2023-32407
- CVE-2023-32375
- CVE-2023-32382
- CVE-2023-32368
- CVE-2023-32380
- CVE-2023-32403
- CVE-2023-32355
- CVE-2023-32395
- CVE-2023-32401
- CVE-2023-32357
- CVE-2023-32397
- CVE-2023-32412
- CVE-2023-32408
- CVE-2023-28181
- CVE-2023-23532
- CVE-2023-32425
- CVE-2023-32365
- CVE-2023-32391
- CVE-2023-28204
- CVE-2023-32373
- CVE-2023-32400
- CVE-2023-34352
- CVE-2023-32379
- CVE-2023-32371
- CVE-2023-32399
- CVE-2023-32414
- CVE-2023-32417
- CVE-2023-32372
- CVE-2023-32420
- CVE-2023-27930
- CVE-2023-29469
- CVE-2023-42869
- CVE-2023-42958
- CVE-2023-32437
- CVE-2023-32385
- CVE-2023-32390
- CVE-2023-32363
- CVE-2023-32367
- CVE-2023-32432
- CVE-2023-32404
- CVE-2023-32394
- CVE-2023-32422
- CVE-2023-32376
- CVE-2023-22809
- CVE-2023-28202
- CVE-2023-32415
- CVE-2023-32402
- CVE-2023-32423
- CVE-2023-32409
- CVE-2023-32389
Frequently Asked Questions
What is CVE-2023-32397?
CVE-2023-32397 is a vulnerability in iOS, iPadOS, macOS Big Sur, macOS Monterey, and macOS Ventura that allows an app to modify protected parts of the file system.
How severe is CVE-2023-32397?
CVE-2023-32397 has a severity score of 7.5, indicating a high severity.
Which software versions are affected by CVE-2023-32397?
CVE-2023-32397 affects iOS versions up to but excluding 15.7.6, iPadOS versions up to but excluding 15.7.6, macOS Big Sur versions up to but excluding 11.7.7, macOS Monterey versions up to but excluding 12.6.6, and macOS Ventura versions up to but excluding 13.4.
How can I fix CVE-2023-32397?
To fix CVE-2023-32397, update to iOS 15.7.6 or later, iPadOS 15.7.6 or later, macOS Big Sur 11.7.7 or later, macOS Monterey 12.6.6 or later, or macOS Ventura 13.4 or later.
Where can I find more information about CVE-2023-32397?
You can find more information about CVE-2023-32397 on the Apple support website: [link](https://support.apple.com/en-us/HT213758) [link](https://support.apple.com/en-us/HT213759) [link](https://support.apple.com/en-us/HT213760).
- agent/type
- agent/first-publish-date
- agent/author
- agent/severity
- agent/softwarecombine
- collector/apple-support
- source/Apple
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/description
- agent/event
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple macos monterey
- canonical/apple macos big sur
- canonical/apple ios
- canonical/apple ipados
- canonical/apple iphone os
- canonical/apple macos
- version/apple macos/11.0
- version/apple macos/12.0
- version/apple macos/13.0
- canonical/apple macos ventura