๐Ÿ” CVE Alert

CVE-2023-28206

HIGH 8.6 โš ๏ธ CISA KEV
CVSS Score
8.6
EPSS Score
0.0%
EPSS Percentile
0th

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.

Vendor apple
Product ios and ipados
Ecosystems
Industries
Technology
Published Apr 10, 2023
Last Updated Oct 21, 2025
โš ๏ธ Actively Exploited โ€” Act Now

Get instant alerts for apple ios and ipados

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2023-28206.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Apple / iOS and iPadOS
unspecified < 15.7
Apple / macOS
unspecified < 11.7
Apple / macOS
unspecified < 12.6
Apple / macOS
unspecified < 13.3
Apple / iOS and iPadOS
unspecified < 16.4

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
support.apple.com: https://support.apple.com/en-us/HT213723 support.apple.com: https://support.apple.com/en-us/HT213725 support.apple.com: https://support.apple.com/en-us/HT213724 support.apple.com: https://support.apple.com/en-us/HT213721 support.apple.com: https://support.apple.com/en-us/HT213720 cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-28206