CVE-2023-32398: A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6...

0.0 CVSS

Description

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to execute arbitrary code with kernel privileges.

Classification

CVE ID: CVE-2023-32398

CVSS Base Severity: LOW

CVSS Base Score: 0.0

Affected Products

Vendor: Apple

Product: macOS

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.1% (probability of being exploited)

EPSS Percentile: 43.58% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://support.apple.com/en-us/HT213758
https://support.apple.com/en-us/HT213759
https://support.apple.com/en-us/HT213764
https://support.apple.com/en-us/HT213765
https://support.apple.com/en-us/HT213760
https://support.apple.com/en-us/HT213757
https://support.apple.com/en-us/HT213761

Timeline

2024-12-06 00:31:40 UTC
CVE

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6...