A validation issue was addressed with improved logic. This issue is fixed in watchOS 9.6.2, iOS 16.6.1 and iPadOS 16.6.1. A maliciously crafted attachment may result in arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Metrics
Affected Vendors & Products
References
History
Fri, 13 Sep 2024 19:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-20 |
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2023-09-07T17:30:09.783Z
Updated: 2024-09-13T17:32:54.762Z
Reserved: 2023-08-22T18:10:00.329Z
Link: CVE-2023-41061
Vulnrichment
Updated: 2024-08-02T18:46:11.796Z
NVD
Status : Analyzed
Published: 2023-09-07T18:15:07.617
Modified: 2024-11-29T14:27:09.157
Link: CVE-2023-41061
Redhat
No data.