CVE-2023-41232
First published: Mon Sep 18 2023(Updated: )
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.7, iOS 17 and iPadOS 17, macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7. An app may be able to disclose kernel memory.
Credit: Liang Wei PixiePoint SecurityLiang Wei PixiePoint SecurityLiang Wei PixiePoint SecurityLiang Wei PixiePoint Security product-security@apple.com product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iOS | <16.7 | 16.7 |
| Apple iPadOS | <16.7 | 16.7 |
| <13.6 | 13.6 | |
| <12.7 | 12.7 | |
| Apple iOS | <17 | 17 |
| Apple iPadOS | <17 | 17 |
| Apple iPadOS | <16.7 | |
| Apple iPhone OS | <16.7 | |
| Apple macOS | >=12.0.0<12.7 | |
| Apple macOS | >=13.0<13.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT213932 (Advisory)
- https://support.apple.com/en-us/HT213931 (Advisory)
- https://support.apple.com/en-us/HT213927 (Advisory)
- http://seclists.org/fulldisclosure/2023/Oct/5
- https://support.apple.com/en-us/HT213938 (Advisory)
- http://seclists.org/fulldisclosure/2023/Oct/6
- http://seclists.org/fulldisclosure/2023/Oct/4
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2023-40412
- CVE-2023-40409
- CVE-2023-40410
- CVE-2023-38612
- CVE-2023-41232
- CVE-2023-40406
- CVE-2023-40420
- CVE-2023-41968
- CVE-2023-40395
- CVE-2023-41984
- CVE-2023-41992
- CVE-2023-41073
- CVE-2023-40454
- CVE-2023-40403
- CVE-2023-40427
- CVE-2023-40452
- CVE-2023-41071
- CVE-2023-41981
- CVE-2023-41063
- CVE-2023-41996
- CVE-2023-41991
- CVE-2023-41070
- CVE-2023-40448
- CVE-2023-40438
- CVE-2023-41068
- CVE-2023-40401
- CVE-2023-35990
- CVE-2023-41993
- CVE-2023-40529
- CVE-2023-40384
- CVE-2023-40432
- CVE-2023-41174
- CVE-2023-42871
- CVE-2023-40399
- CVE-2023-42872
- CVE-2023-42925
- CVE-2023-32361
- CVE-2023-35984
- CVE-2023-41065
- CVE-2023-38596
- CVE-2023-40528
- CVE-2023-32396
- CVE-2023-41069
- CVE-2023-41980
- CVE-2023-40431
- CVE-2023-40391
- CVE-2023-40441
- CVE-2023-40434
- CVE-2023-40396
- CVE-2023-41995
- CVE-2023-42870
- CVE-2023-41974
- CVE-2023-40429
- CVE-2023-41060
- CVE-2023-40400
- CVE-2023-42957
- CVE-2023-41986
- CVE-2023-42949
- CVE-2023-40456
- CVE-2023-40520
- CVE-2023-42934
- CVE-2023-40422
- CVE-2023-40417
- CVE-2023-40419
- CVE-2023-40428
- CVE-2023-40424
- CVE-2023-39434
- CVE-2023-40414
- CVE-2023-41074
- CVE-2023-35074
- CVE-2023-32359
- CVE-2023-40385
- CVE-2023-42833
- CVE-2023-38610
Frequently Asked Questions
What is CVE-2023-41232?
CVE-2023-41232 is a vulnerability related to Biometric Authentication in Apple iOS and iPadOS that allowed for an out-of-bounds read, which has been addressed with improved bounds checking.
How severe is CVE-2023-41232?
CVE-2023-41232 severity is not specified in the information provided.
Which software versions are affected by CVE-2023-41232?
CVE-2023-41232 affects Apple iOS up to, but not including, version 17, and Apple iPadOS up to, but not including, version 17.
How can I fix CVE-2023-41232?
To fix CVE-2023-41232, it is recommended to update your Apple iOS or iPadOS device to version 17 or above, as the vulnerability has been addressed in those versions.
Where can I find more information about CVE-2023-41232?
You can find more information about CVE-2023-41232 in the reference provided by Apple: https://support.apple.com/en-us/HT213938
- agent/type
- agent/first-publish-date
- agent/weakness
- agent/author
- agent/severity
- agent/softwarecombine
- collector/apple-support
- source/Apple
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/event
- agent/description
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple macos monterey
- canonical/apple macos ventura
- canonical/apple ios
- canonical/apple ipados
- canonical/apple iphone os
- canonical/apple macos
- version/apple macos/12.0.0
- version/apple macos/13.0