Vulnerabilities > CVE-2023-41061 - Unspecified vulnerability in Apple Ipados
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
A validation issue was addressed with improved logic. This issue is fixed in watchOS 9.6.2, iOS 16.6.1 and iPadOS 16.6.1. A maliciously crafted attachment may result in arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Vulnerable Configurations
Related news
- Apple patches two zero-days under attack (CVE-2023-41064, CVE-2023-41061) (source)
- Apple races to patch the latest zero-day iPhone exploit (source)
- CISA warns govt agencies to secure iPhones against spyware attacks (source)
- Google Rushes to Patch Critical Chrome Vulnerability Exploited in the Wild - Update Now (source)
- Zero-Click Exploit in iPhones (source)