CVE ID
CVE-2023-38606
Vulnerability Name
Apple Multiple Products Kernel Unspecified Vulnerability
- Project: Apple
- Product: Multiple Products
Date
- Date Added: 2023-07-26
- Due Date: 2023-08-16
Description
Apple iOS, iPadOS, macOS, tvOS, and watchOS contain an unspecified vulnerability allowing an app to modify a sensitive kernel state.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Additional Notes
https://support.apple.com/en-us/HT213841, https://support.apple.com/en-us/HT213842, https://support.apple.com/en-us/HT213843,https://support.apple.com/en-us/HT213844,https://support.apple.com/en-us/HT213845,https://support.apple.com/en-us/HT213846,https://support.apple.com/en-us/HT213848 ; https://nvd.nist.gov/vuln/detail/CVE-2023-38606
Related Security News
- Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1
- Apple fixes WebKit zero-day exploited in ‘extremely sophisticated’ attacks
- Apple fixes zero-day exploited in 'extremely sophisticated' attacks
- Apple fixes this year’s first actively exploited zero-day bug
- Apple fixes two zero-days used in attacks on Intel-based Macs
Top comments (0)