CVE-2023-41061
Apple iOS, iPadOS, and watchOS Wallet Code Execution Vulnerability
CVSS
—
No CVSS
EPSS
3.2%
p86
KEV
YES
Sep 11, 2023
Exploit Today
76
0-100
Published: — · Last modified: —
Product
Apple / iOS, iPadOS, and watchOS
Vulnerability
Apple iOS, iPadOS, and watchOS Wallet Code Execution Vulnerability
Added to KEV
Sep 11, 2023
Remediate by
Oct 2, 2023
Known ransomware use
No
Summary description
Apple iOS, iPadOS, and watchOS contain an unspecified vulnerability due to a validation issue affecting Wallet in which a maliciously crafted attachment may result in code execution. This vulnerability was chained with CVE-2023-41064.
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes
https://support.apple.com/en-us/HT213905, https://support.apple.com/kb/HT213907; https://nvd.nist.gov/vuln/detail/CVE-2023-41061