Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-41064

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 16.6.1 and iPadOS 16.6.1, macOS Monterey 12.6.9, macOS Ventura 13.5.2, iOS 15.7.9 and iPadOS 15.7.9, macOS Big Sur 11.7.10. Processing a maliciously crafted image may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Published

2023-09-07T18:15:07.727

Last Modified

2025-02-10T17:52:50.483

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Primary
CWE-120
Type: Secondary
CWE-120

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	apple	ipados	< 15.7.9	Yes
Operating System	apple	ipados	< 16.6.1	Yes
Operating System	apple	iphone_os	< 15.7.9	Yes
Operating System	apple	iphone_os	< 16.6.1	Yes
Operating System	apple	macos	< 11.7.10	Yes
Operating System	apple	macos	< 12.6.9	Yes
Operating System	apple	macos	< 13.5.2	Yes

References

http://www.openwall.com/lists/oss-security/2023/09/21/4 Mailing List ([email protected])
https://support.apple.com/en-us/HT213905 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/HT213906 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/HT213913 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/HT213914 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/HT213915 Release Notes, Vendor Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2023/09/21/4 Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213905 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213906 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213913 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213914 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213915 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)