What is the vulnerability ID?

The vulnerability ID is CVE-2023-36862.

What is the severity of CVE-2023-36862?

The severity of CVE-2023-36862 is medium with a severity value of 5.5.

What software is affected by CVE-2023-36862?

The affected software is macOS Ventura 13.5 and Apple iPadOS versions 13.0 to 13.5.

How was CVE-2023-36862 fixed?

CVE-2023-36862 was fixed in macOS Ventura 13.5 with additional code-signing restrictions.

Vulnerability/
CVE-2023-36862

medium

5.5

CWE

24/7/2023

26/7/2023

23/10/2024

CVE-2023-36862

Q: What is the title of the vulnerability?

The title of the vulnerability is 'AppleMobileFileIntegrity. A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.'

First published: Mon Jul 24 2023(Updated: )

AppleMobileFileIntegrity. A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.

Credit: Mickey Jin @patch1t product-security@apple.com product-security@apple.com

Affected Software	Affected Version	How to fix
	<13.5	13.5
Apple macOS	>=13.0<13.5

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT213843 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

HT213843

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2023-40439
CVE-2023-38616
CVE-2023-34425
CVE-2023-38580
CVE-2023-36862
CVE-2023-32364
CVE-2023-35983
CVE-2023-40392
CVE-2023-42828
CVE-2023-34241
CVE-2023-28319
CVE-2023-28320
CVE-2023-28321
CVE-2023-28322
CVE-2023-32416
CVE-2023-40437
CVE-2023-32418
CVE-2023-36854
CVE-2022-3970
CVE-2023-28200
CVE-2023-38590
CVE-2023-38598
CVE-2023-36495
CVE-2023-37285
CVE-2023-38604
CVE-2023-32734
CVE-2023-32441
CVE-2023-38261
CVE-2023-38424
CVE-2023-38425
CVE-2023-32381
CVE-2023-32433
CVE-2023-35993
CVE-2023-38410
CVE-2023-38606
CVE-2023-38603
CVE-2023-38565
CVE-2023-38593
CVE-2023-40440
CVE-2023-38258
CVE-2023-38421
CVE-2023-1916
CVE-2023-38571
CVE-2023-29491
CVE-2023-38601
CVE-2023-32444
CVE-2023-2953
CVE-2023-42829
CVE-2023-38609
CVE-2023-38259
CVE-2023-38564
CVE-2023-38602
CVE-2023-42831
CVE-2023-32442
CVE-2023-32443
CVE-2023-42832
CVE-2023-32429
CVE-2023-1801
CVE-2023-32654
CVE-2023-2426
CVE-2023-2609
CVE-2023-2610
CVE-2023-38608
CVE-2023-38605
CVE-2023-40397
CVE-2023-38572
CVE-2023-38599
CVE-2023-32445
CVE-2023-38592
CVE-2023-38594
CVE-2023-38595
CVE-2023-38600
CVE-2023-38611
CVE-2023-37450
CVE-2023-42866
CVE-2023-38597
CVE-2023-38133

Frequently Asked Questions

What is the vulnerability ID?
The vulnerability ID is CVE-2023-36862.
What is the title of the vulnerability?
The title of the vulnerability is 'AppleMobileFileIntegrity. A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.'
What is the severity of CVE-2023-36862?
The severity of CVE-2023-36862 is medium with a severity value of 5.5.
What software is affected by CVE-2023-36862?
The affected software is macOS Ventura 13.5 and Apple iPadOS versions 13.0 to 13.5.
How was CVE-2023-36862 fixed?
CVE-2023-36862 was fixed in macOS Ventura 13.5 with additional code-signing restrictions.

collector/nvd-index
agent/type
agent/last-modified-date
agent/first-publish-date
agent/softwarecombine
agent/references
agent/weakness
agent/author
agent/severity
agent/description
collector/apple-support
source/Apple
agent/software-canonical-lookup
agent/event
collector/nvd-api
agent/software-canonical-lookup-request
collector/nvd-latest
agent/tags
collector/mitre-cve
source/MITRE
vendor/apple
canonical/apple macos
version/apple macos/13.0
canonical/apple macos ventura