CVE-2023-27945

medium

Description

This issue was addressed with improved entitlements. This issue is fixed in Xcode 14.3, macOS Big Sur 11.7.7, macOS Monterey 12.6.6. A sandboxed app may be able to collect system logs.

References

https://support.apple.com/en-us/HT213760

https://support.apple.com/en-us/HT213759

https://support.apple.com/en-us/HT213679

Details

Source: Mitre, NVD

Published: 2023-05-08

Updated: 2023-07-27

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 6.3

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

Severity: Medium