vulnerability
OS X update for LaunchServices (CVE-2023-42850)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:C/I:N/A:N) | Oct 25, 2023 | Oct 31, 2023 | Mar 27, 2026 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:C/I:N/A:N)
Published
Oct 25, 2023
Added
Oct 31, 2023
Modified
Mar 27, 2026
Description
The issue was addressed with improved permissions logic. This issue is fixed in macOS Sonoma 14.1. An app may be able to access sensitive user data.
Solution
apple-osx-upgrade-14_1
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.