Use-After-Free Vulnerability Allows Arbitrary Code Execution with Kernel Privileges

Use-After-Free Vulnerability Allows Arbitrary Code Execution with Kernel Privileges

CVE-2023-42870 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sonoma 14, iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges.

Learn more about our Cis Benchmark Audit For Apple Ios.