CVE-2023-42823

The issue was resolved by sanitizing logging This issue is fixed in watchOS 10.1, macOS Sonoma 14.1, tvOS 17.1, macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.1. An app may be able to access user-sensitive data.

Weakness

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

Affected Software

Name	Vendor	Start Version	End Version
Ipados	Apple	*	16.7.2 (excluding)
Ipados	Apple	17.0 (including)	17.0 (including)
Iphone_os	Apple	*	16.7.2 (excluding)
Iphone_os	Apple	17.0 (including)	17.0 (including)
Macos	Apple	12.0 (including)	12.7.1 (excluding)
Macos	Apple	13.0 (including)	13.6.1 (excluding)
Macos	Apple	14.0 (including)	14.0 (including)
Tvos	Apple	*	17.1 (excluding)
Watchos	Apple	*	10.1 (excluding)

References

https://support.apple.com/en-us/HT213981
https://support.apple.com/en-us/HT213982
https://support.apple.com/en-us/HT213983
https://support.apple.com/en-us/HT213984
https://support.apple.com/en-us/HT213985
https://support.apple.com/en-us/HT213987
https://support.apple.com/en-us/HT213988
https://support.apple.com/en-us/HT213981
https://support.apple.com/en-us/HT213982
https://support.apple.com/en-us/HT213983
https://support.apple.com/en-us/HT213984
https://support.apple.com/en-us/HT213985
https://support.apple.com/en-us/HT213987
https://support.apple.com/en-us/HT213988

NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-42823
CWE	https://cwe.mitre.org/data/definitions/922.html

Insecure Storage of Sensitive Information

Weakness

Affected Software

References