CVE-2023-23505
Severity CVSS v4.0:
Pending analysis
Type:
CWE-532
Information Exposure Through Log Files
Publication date:
27/02/2023
Last modified:
11/03/2025
Description
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, iOS 15.7.3 and iPadOS 15.7.3, iOS 16.3 and iPadOS 16.3. An app may be able to access information about a user’s contacts.
Impact
Base Score 3.x
3.30
Severity 3.x
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* | 15.7.3 (excluding) | |
| cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* | 16.0 (including) | 16.3 (excluding) |
| cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* | 15.7.3 (excluding) | |
| cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* | 16.0 (including) | 16.3 (excluding) |
| cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | 11.0 (including) | 11.7.3 (excluding) |
| cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | 12.0.0 (including) | 12.6.3 (excluding) |
| cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | 13.0 (including) | 13.2 (excluding) |
| cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* | 9.3 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://support.apple.com/en-us/HT213598
- https://support.apple.com/en-us/HT213599
- https://support.apple.com/en-us/HT213603
- https://support.apple.com/en-us/HT213604
- https://support.apple.com/en-us/HT213605
- https://support.apple.com/en-us/HT213606
- https://support.apple.com/en-us/HT213598
- https://support.apple.com/en-us/HT213599
- https://support.apple.com/en-us/HT213603
- https://support.apple.com/en-us/HT213604
- https://support.apple.com/en-us/HT213605
- https://support.apple.com/en-us/HT213606