CVE-2023-23497: High severity apple macos vulnerability
Published Jan 23, 2023
·Updated
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.3, macOS Ventura 13.2, macOS Monterey 12.6.3. An app may be able to gain root privileges.
Other sources
PackageKit. A logic issue was addressed with improved state management.
Credit
Mickey Jin@@patch1t
Affected Software
6 affected componentsFixes available
Apple macOS Big Sur<11.7.3
11.7.3
macOS<12.6.3
12.6.3
macOS Ventura<13.2
13.2
macOS>=11.0<11.7.3
macOS>=12.0.0<12.6.3
macOS>=13.0<13.2
Event History
Feb 27, 2023
CVE Published
via MITRE·12:00 AM
Data Sourced
via MITRE·12:00 AM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2023-23499
- CVE-2022-35252
- CVE-2023-23513
- CVE-2023-23516
- CVE-2022-42834
- CVE-2023-23497
- CVE-2023-23505
- CVE-2023-27931
- CVE-2023-23518
- CVE-2023-23517
- CVE-2023-23508
- CVE-2022-42915
- CVE-2022-42916
- CVE-2022-32221
- CVE-2022-35260
- CVE-2023-23493
- CVE-2022-32915
- CVE-2023-23507
- CVE-2023-23504
- CVE-2023-23502
- CVE-2023-23511
- CVE-2023-32438
- CVE-2023-23520
- CVE-2023-23539
- CVE-2023-41990
- CVE-2023-23530
- CVE-2023-23531
- CVE-2023-23519
- CVE-2023-23500
- CVE-2023-23506
- CVE-2023-23498
- CVE-2023-23503
- CVE-2023-28208
- CVE-2023-23510
- CVE-2023-23512
- CVE-2022-3705
- CVE-2023-32393
- CVE-2023-23496
- CVE-2023-23501
- CVE-2022-0108
Frequently Asked Questions
1
What is CVE-2023-23497?
CVE-2023-23497 is a vulnerability in PackageKit that allows an app to gain root privileges.
2
What is the severity of CVE-2023-23497?
CVE-2023-23497 has a severity rating of 7.8 (high).
3
How can I fix CVE-2023-23497?
To fix CVE-2023-23497, update your macOS to Big Sur 11.7.3, Monterey 12.6.3, or Ventura 13.2.
4
Where can I find more information about CVE-2023-23497?
You can find more information about CVE-2023-23497 on the Apple support website.