CVE-2023-42824

HIGH KEV

iPadOS < 16.7.1 - Local Privilege Escalation

Title source: llm

Exploitation Summary

CVE-2023-42824 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added October 5, 2023. EIP tracks 1 public exploit from researchers including 619555798.

AI-analyzed exploit summary This repository contains a functional proof-of-concept exploit for CVE-2023-42824, targeting a copy-on-write (COW) bypass vulnerability in macOS. The exploit leverages mach VM operations and multithreading to trigger a race condition, potentially leading to privilege escalation.

Description

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.1 and iPadOS 16.7.1. A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6.

Exploits (1)

nomisec WORKING POC

by 619555798 · local

https://github.com/619555798/cve-2023-42824

View Code ZIP pw:eip

This repository contains a functional proof-of-concept exploit for CVE-2023-42824, targeting a copy-on-write (COW) bypass vulnerability in macOS. The exploit leverages mach VM operations and multithreading to trigger a race condition, potentially leading to privilege escalation.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Complex

Reliability

Racy

Target: macOS (specific version not explicitly stated in the provided code)

No auth needed

Prerequisites: Access to a vulnerable macOS system · Ability to execute arbitrary code on the target system

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Core References

Vendor Advisory

https://support.apple.com/en-us/HT213972

Vendor Advisory

https://support.apple.com/kb/HT213961

Vendor Advisory

https://support.apple.com/kb/HT213972

US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-42824

Scores

CVSS v3 7.8

EPSS 0.0094

EPSS Percentile 56.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation active

Automatable no

Technical Impact total

Details

CISA KEV 2023-10-05

VulnCheck KEV 2023-10-04

InTheWild.io 2023-10-04

ENISA EUVD EUVD-2023-47245

Status published

Products (2)

apple/ipados < 16.7.1

apple/iphone_os < 16.7.1

Published Oct 04, 2023

KEV Added Oct 05, 2023

Tracked Since Feb 18, 2026