CVE-2023-28206

Published: Apr 10, 2023

Modified: Oct 21, 2025

PUBLISHED

Description

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.

Vendor	Product	Versions
Apple	iOS and iPadOS	affected `unspecified - < 15.7`
Apple	macOS	affected `unspecified - < 11.7`
Apple	macOS	affected `unspecified - < 12.6`
Apple	macOS	affected `unspecified - < 13.3`
Apple	iOS and iPadOS	affected `unspecified - < 16.4`

References

https://support.apple.com/en-us/HT213723

https://support.apple.com/en-us/HT213725

https://support.apple.com/en-us/HT213724

https://support.apple.com/en-us/HT213721

https://support.apple.com/en-us/HT213720

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-28206

Description

Affected Products

References