Vulnerability Database

314,373

Total vulnerabilities in the database

CVE-2023-41988

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 17.1 and iPadOS 17.1. An attacker with physical access may be able to use Siri to access sensitive user data.

Published: Oct 25, 2023
Updated: Nov 16, 2025
CVE: CVE-2023-41988
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.8
AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
apple / macos	14.0	14.1
apple / iphone_os	17.0	17.1
apple / watchos	-	10.1
apple / ipados	17.0	17.1

http://seclists.org/fulldisclosure/2023/Oct/19
http://seclists.org/fulldisclosure/2023/Oct/24
http://seclists.org/fulldisclosure/2023/Oct/25
https://support.apple.com/en-us/HT213982
https://support.apple.com/en-us/HT213984
https://support.apple.com/en-us/HT213988
https://support.apple.com/kb/HT213982
https://support.apple.com/kb/HT213984
https://support.apple.com/kb/HT213988

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo