CVE-2023-28206
Apple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnerability
CVSS
—
Sin CVSS
EPSS
24.5%
p98
KEV
SÍ
10 abr 2023
Exploit Today
79
0-100
Publicado: — · Última mod.: —
Producto
Apple / iOS, iPadOS, and macOS
Vulnerabilidad
Apple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnerability
Añadido a KEV
10 abr 2023
Remediar antes de
1 may 2023
Uso conocido en ransomware
No
Descripción resumida
Apple iOS, iPadOS, and macOS IOSurfaceAccelerator contain an out-of-bounds write vulnerability that allows an app to execute code with kernel privileges.
Acción requerida
Apply updates per vendor instructions.
Notas
https://support.apple.com/en-us/HT213720, https://support.apple.com/en-us/HT213721; https://nvd.nist.gov/vuln/detail/CVE-2023-28206