Lucene search
AppleCVELIST:CVE-2023-41991HistorySep 21, 2023 - 6:23 p.m.
CVE-2023-41991
2023-09-2118:23:48
apple
www.cve.org
3
certificate validation
macos ventura 13.6
ios 16.7
ipados 16.7
malicious app
signature validation bypass
actively exploited
A certificate validation issue was addressed. This issue is fixed in macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7. A malicious app may be able to bypass signature validation. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.
CNA Affected
[
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "16.7",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "13.6",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-41991
2023-09-21 19:15:11
cisa_kev
cisa_kev
Apple Multiple Products Improper Certificate Validation Vulnerability
2023-09-25 00:00:00
attackerkb
attackerkb
CVE-2023-41991
2023-09-21 00:00:00
prion
prion
Design/Logic Flaw
2023-09-21 19:15:00
cve
cve
CVE-2023-41991
2023-09-21 19:15:11
nessus
nessus
macOS 13.x < 13.6 Multiple Vulnerabilities (HT213931)
2023-09-21 00:00:00
Apple iOS < 17.0.1 Multiple Vulnerabilities (HT213926)
2023-09-25 00:00:00
apple
apple
About the security content of watchOS 10.0.1
2023-09-21 00:00:00
About the security content of watchOS 9.6.3
2023-09-21 00:00:00
About the security content of iOS 17.0.1 and iPadOS 17.0.1
2023-09-21 00:00:00
hivepro
hivepro
Apple Addresses Zero-Day Flaws Exploited in the Wild
2023-09-26 04:57:30
malwarebytes
malwarebytes
Emergency update! Apple patches three zero-days
2023-09-22 17:45:00
thn
thn
openvas
openvas
Apple Mac OS X Security Update (HT213931)
2023-10-04 00:00:00