CVE-2023-40429

MEDIUM

Apple iPadOS < 17.0 - Unprotected User Data Exposure via Permissions Issue

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-40429. PoCs published by biscuitehh.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2023-40429, an entitlement bypass in iOS 16 that allowed third-party apps to access the device hostname without proper authorization. The writeup includes the root cause, timeline, and Apple's response.

Description

A permissions issue was addressed with improved validation. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able to access sensitive user data.

Exploits (1)

nomisec WRITEUP 5 stars
by biscuitehh · poc
https://github.com/biscuitehh/cve-2023-40429-ez-device-name

This repository provides a detailed technical analysis of CVE-2023-40429, an entitlement bypass in iOS 16 that allowed third-party apps to access the device hostname without proper authorization. The writeup includes the root cause, timeline, and Apple's response.

Classification
Writeup 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: iOS 16
No auth needed
Prerequisites: iOS 16 device · Third-party app accessing ProcessInfo.processInfo.hostName
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

Scores

CVSS v3 5.5
EPSS 0.0055
EPSS Percentile 42.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

Status published
Products (5)
apple/ipados < 17.0
apple/iphone_os < 17.0
apple/macos < 14.0
apple/tvos < 17.0
apple/watchos < 10.0
Published Sep 27, 2023
Tracked Since Feb 18, 2026