CVE-2023-42824: Apple iOS and iPadOS Kernel Privilege Escalation Vulnerability
Published Oct 4, 2023
·Updated
Apple iOS and iPadOS contain an unspecified vulnerability that allows for local privilege escalation.
Credit
CVE-2023-42824
Affected Software
11 affected componentsFixes available
Apple iOS and iPadOS
Apple iOS<16.7.1
16.7.1
Apple iPadOS<16.7.1
16.7.1
Apple iOS<17.0.3
17.0.3
Apple iPadOS<17.0.3
17.0.3
Apple iPadOS<17.0.3
Apple iPhone OS<17.0.3
Apple iPadOS<16.7.1
Apple iPhone OS<16.7.1
Apple iPadOS>=17.0<17.0.3
Apple iPhone OS>=17.0<17.0.3
Remediation
Information
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Event History
Oct 4, 2023
CVE Published
via MITRE·06:02 PM
Data Sourced
via MITRE·06:02 PM
DescriptionWeakness
Data Sourced
via NVD·07:15 PM
DescriptionSeverityAffected Software
Oct 5, 2023
Known Exploited
via CISA·12:00 AM
Frequently Asked Questions
1
What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2023-42824.
2
What software versions are affected by this vulnerability?
The affected software versions are iOS and iPadOS up to version 17.0.3.
3
Who is the vendor of the affected software?
The vendor of the affected software is Apple.
4
What is the severity of this vulnerability?
The severity of this vulnerability is not mentioned in the provided information.
5
How was the vulnerability addressed?
The vulnerability was addressed with improved checks.
6
Where can I find more information about this vulnerability?
You can find more information about this vulnerability at the following reference link: [Apple Support](https://support.apple.com/en-us/HT213961)