CVE-2023-32405

HIGH

macOS 11.0-11.7.6 - Privilege Escalation to Root via Logic Issue

Title source: llm
STIX 2.1

Description

A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to gain root privileges.

References (3)

Core 3
Core References
Release Notes, Vendor Advisory
https://support.apple.com/en-us/HT213758
Release Notes, Vendor Advisory
https://support.apple.com/en-us/HT213759
Release Notes, Vendor Advisory
https://support.apple.com/en-us/HT213760

Scores

CVSS v3 7.8
EPSS 0.0004
EPSS Percentile 12.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-276
Status published
Products (1)
apple/macos 11.0 - 11.7.7
Published Jun 23, 2023
Tracked Since Feb 18, 2026