CVE-2023-32407 | Vulnerability Database | Aqua Security

A logic issue was addressed with improved state management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences.

Affected Software

Name	Vendor	Start Version	End Version
Ipados	Apple	*	15.7.6 (excluding)
Ipados	Apple	16.0 (including)	16.5 (excluding)
Iphone_os	Apple	*	15.7.6 (excluding)
Iphone_os	Apple	16.0 (including)	16.5 (excluding)
Macos	Apple	11.0 (including)	11.7.7 (excluding)
Macos	Apple	12.0 (including)	12.6.6 (excluding)
Macos	Apple	13.0 (including)	13.4 (excluding)
Tvos	Apple	*	16.5 (excluding)
Watchos	Apple	*	9.5 (excluding)
Watchos	Apple	9.5 (including)	9.5 (including)

References

https://support.apple.com/en-us/HT213757
https://support.apple.com/en-us/HT213758
https://support.apple.com/en-us/HT213759
https://support.apple.com/en-us/HT213760
https://support.apple.com/en-us/HT213761
https://support.apple.com/en-us/HT213764
https://support.apple.com/en-us/HT213765

NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-32407
CWE	https://cwe.mitre.org/data/definitions/.html