Lucene search

K

This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.APPLE_IOS_165_CHECK.NBIN

HistoryMay 23, 2023 - 12:00 a.m.

Apple iOS < 16.5 Multiple Vulnerabilities (HT213757)

2023-05-2300:00:00

This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.

www.tenable.com

32

apple ios

vulnerabilities

remote attack

arbitrary code execution

webkit

imageio

kernel

root privileges

nessus

0.005 Low

EPSS

Percentile

75.7%

The version of Apple iOS running on the mobile device is prior to 16.5. It is, therefore, affected by multiple vulnerabilities including:

Missing bounds checks in the Cellular component. A remote attack may be able to cause arbitrary code execution. (CVE-2023-32419)
A use after free vulnerability in the WebKit component. Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2023-32373)
A Buffer overflow vulnerability in the ImageIO component. Processing an image can lead to arbitrary code execution. (CVE-2023-32384)
A race condition in the Kernel component which can result in an app gaining root privileges.
(CVE-2023-32413)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

Binary data apple_ios_165_check.nbin

VendorProductVersionCPE
appleiphone_oscpe:/o:apple:iphone_os

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27930

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28191

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28202

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28204

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32352

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32354

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32357

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32365

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32367

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32368

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32371

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32372

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32373

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32376

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32384

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32385

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32388

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32389

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32390

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32391

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32392

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32394

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32398

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32399

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32400

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32402

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32403

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32404

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32407

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32408

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32409

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32411

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32412

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32413

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32415

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32419

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32420

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32422

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32423

support.apple.com/en-us/HT213757

0.005 Low

EPSS

Percentile

75.7%

Related for APPLE_IOS_165_CHECK.NBIN