vulnerability

OS X update for StorageKit (CVE-2023-41968)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:M/Au:N/C:C/I:N/A:N)	2023-09-27	2023-09-27	2025-01-28

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:N/A:N)

Published

2023-09-27

Added

2023-09-27

Modified

2025-01-28

Description

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to read arbitrary files.

Solution(s)

apple-osx-upgrade-13_6apple-osx-upgrade-14

References

CVE-2023-41968
https://attackerkb.com/topics/CVE-2023-41968
URL-https://support.apple.com/kb/HT213931
URL-https://support.apple.com/kb/HT213940

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today