CVE-2023-42824

HIGH 7.8

⚠️ CISA KEV

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.1 and iPadOS 16.7.1. A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6.

Vendor	apple
Product	ios and ipados
Ecosystems	iOS macOS
Industries	Technology
Published	Oct 4, 2023
Last Updated	Nov 4, 2025

⚠️ Actively Exploited — Act Now

Get instant alerts for apple ios and ipados

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2023-42824.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Apple / iOS and iPadOS

unspecified < 16.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

support.apple.com: https://support.apple.com/en-us/HT213972 support.apple.com: https://support.apple.com/kb/HT213972 support.apple.com: https://support.apple.com/kb/HT213961 cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-42824