Apple iOS/macOS tvOS watchOS font cache arbitrary code exec - fixed iOS 16.3
CVE-2023-41990 Published on September 12, 2023
The issue was addressed with improved handling of caches. This issue is fixed in tvOS 16.3, iOS 16.3 and iPadOS 16.3, macOS Monterey 12.6.8, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Ventura 13.2, watchOS 9.3. Processing a font file may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1.
Known Exploited Vulnerability
This Apple Multiple Products Code Execution Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Apple iOS, iPadOS, macOS, tvOS, and watchOS contain an unspecified vulnerability that allows for code execution when processing a font file.
The following remediation steps are recommended / required by January 29, 2024: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Vulnerability Analysis
CVE-2023-41990 is exploitable with local system access, requires user interaction. This vulnerability is considered to have a low attack complexity. This vulnerability is known to be actively exploited by threat actors. The potential impact of an exploit of this vulnerability is considered to be very high.
Products Associated with CVE-2023-41990
Want to know whenever a new CVE is published for Apple products? stack.watch will email you.
Affected Versions
Apple iOS and iPadOS:- Version unspecified and below 16.3 is affected.
- Version unspecified and below 16.3 is affected.
- Version unspecified and below 15.7 is affected.
- Version unspecified and below 11.7 is affected.
- Version unspecified and below 13.2 is affected.
- Version unspecified and below 12.6 is affected.
- Version unspecified and below 9.3 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.