CVE-2023-42824 vulnerability in Apple Products
Published on October 4, 2023
Known Exploited Vulnerability
This Apple iOS and iPadOS Kernel Privilege Escalation Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Apple iOS and iPadOS contain an unspecified vulnerability that allows for local privilege escalation.
The following remediation steps are recommended / required by October 26, 2023: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Vulnerability Analysis
CVE-2023-42824 is exploitable with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 1.8 out of four. The potential impact of an exploit of this vulnerability is considered to be very high.
Products Associated with CVE-2023-42824
You can be notified by stack.watch whenever vulnerabilities like CVE-2023-42824 are published in these products:
What versions are vulnerable to CVE-2023-42824?
- Apple iPad OS Version 17.0 Fixed in Version 17.0.3
- Apple iPad OS Fixed in Version 16.7.1
- Apple iOS Version 17.0 Fixed in Version 17.0.3
- Apple iOS Fixed in Version 16.7.1