OS X Libsystem更新漏洞(CVE-2023-42893)

OS X Libsystem更新漏洞(CVE-2023-42893)

Severity

4

CVSS

(AV: L /交流:米/非盟:N / C: P / I: P / A: P)

Published

03/25/2024

Created

03/25/2024

Added

03/25/2024

Modified

04/10/2024

描述

通过删除易受攻击的代码并添加额外的检查，解决了权限问题. 此问题已在macOS Monterey 12中修复.7.2、macOS Ventura.6.3, iOS 17.2和iPadOS 17.2, iOS 16.7.3和iPadOS 16.7.3、tvOS 17.2、手表.2、macOS索诺玛.2. 应用程序可能能够访问受保护的用户数据.

解决方案(年代)

• apple-osx-upgrade-12_7_2
• apple-osx-upgrade-13_6_3
• apple-osx-upgrade-14_2

References

• http://attackerkb.com/topics/cve-2023-42893
• Cve - 2023-42893
• http://support.apple.com/kb/HT214036
• http://support.apple.com/kb/HT214037
• http://support.apple.com/kb/HT214038