CVE-2023-42891

Published: Dec 12, 2023

Modified: Nov 4, 2025

PUBLISHED

Description

An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.2, macOS Ventura 13.6.3, macOS Monterey 12.7.2. An app may be able to monitor keystrokes without user permission.

Vendor	Product	Versions
Apple	macOS	affected `unspecified - < 13.6`
Apple	macOS	affected `unspecified - < 12.7`
Apple	macOS	affected `unspecified - < 14.2`

References

https://support.apple.com/en-us/HT214038

https://support.apple.com/en-us/HT214037

https://support.apple.com/en-us/HT214036

http://seclists.org/fulldisclosure/2023/Dec/9

http://seclists.org/fulldisclosure/2023/Dec/10

http://seclists.org/fulldisclosure/2023/Dec/11

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-42891

Description

Affected Products

References