vulnerability

OS X update for TCC (CVE-2023-27931)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:M/Au:N/C:C/I:N/A:N)	Apr 12, 2023	Apr 12, 2023	Mar 27, 2026

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:N/A:N)

Published

Apr 12, 2023

Added

Apr 12, 2023

Modified

Mar 27, 2026

Description

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.3, iOS 16.4 and iPadOS 16.4, macOS Big Sur 11.7.3, tvOS 16.4, watchOS 9.4. An app may be able to access user-sensitive data.

Solutions

apple-osx-upgrade-11_7_3apple-osx-upgrade-12_6_3apple-osx-upgrade-13_3

References

CVE-2023-27931
https://attackerkb.com/topics/CVE-2023-27931
CWE-203
EUVD-EUVD-2023-31657
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-31657
https://support.apple.com/kb/HT213603
https://support.apple.com/kb/HT213604
https://support.apple.com/kb/HT213670

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report