CVE-2023-32422

MEDIUM

iPadOS < 16.5 - Privacy Preference Bypass via SQLite Logging

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-32422. PoCs published by gergelykalman.

AI-analyzed exploit summary This PoC demonstrates a TCC (Transparency, Consent, and Control) bypass in macOS via SQLite manipulation, allowing unauthorized access to protected services by injecting malicious SQLite queries into the TCC database. The exploit leverages a vulnerability in how macOS handles SQLite database operations to bypass privacy protections.

Description

This issue was addressed by adding additional SQLite logging restrictions. This issue is fixed in iOS 16.5 and iPadOS 16.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to bypass Privacy preferences.

Exploits (1)

nomisec WORKING POC 6 stars

by gergelykalman · poc

https://github.com/gergelykalman/CVE-2023-32422-a-macOS-TCC-bypass-in-sqlite

View Code ZIP pw:eip

This PoC demonstrates a TCC (Transparency, Consent, and Control) bypass in macOS via SQLite manipulation, allowing unauthorized access to protected services by injecting malicious SQLite queries into the TCC database. The exploit leverages a vulnerability in how macOS handles SQLite database operations to bypass privacy protections.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: macOS (specific version not specified, but likely affects multiple versions)

No auth needed

Prerequisites: Local access to the target macOS system · Ability to execute scripts as a user with sufficient privileges to modify SQLite databases

MITRE ATT&CK

T1548.002 - Bypass User Account Control T1552.001 - Credentials In Files

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Release Notes, Vendor Advisory

https://support.apple.com/en-us/HT213757

Release Notes, Vendor Advisory

https://support.apple.com/en-us/HT213758

Release Notes, Vendor Advisory

https://support.apple.com/en-us/HT213761

Vendor Advisory

https://support.apple.com/kb/HT213764

Vendor Advisory

https://support.apple.com/kb/HT213844

Vendor Advisory

https://support.apple.com/kb/HT213845

Scores

CVSS v3 5.5

EPSS 0.0067

EPSS Percentile 47.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

Status published

Products (4)

apple/ipados < 16.5

apple/iphone_os < 16.5

apple/macos 13.0 - 13.4

apple/tvos < 16.5

Published Jun 23, 2023

Tracked Since Feb 18, 2026