13.1

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

apple

NVD

Published: 2023-07-27

Updated: 2023-08-02

Summary

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.5. An app may be able to determine a user’s current location.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple Macos 13.0 Apple Macos 13.0.1 Apple Macos 13.1	3

References

https://support.apple.com/en-us/HT213843