CVE-2023-42844
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma 14.1, macOS Monterey 12.7.1, macOS Ventura 13.6.1. A website may be able to access sensitive user data when resolving symlinks.
| Software | From | Fixed in |
|---|---|---|
| apple / macos | 14.0 | 14.1 |
| apple / macos | 13.0 | 13.6.1 |
| apple / macos | 12.0.0 | 12.7.1 |
- http://seclists.org/fulldisclosure/2023/Oct/21
- http://seclists.org/fulldisclosure/2023/Oct/24
- http://seclists.org/fulldisclosure/2023/Oct/26
- https://support.apple.com/en-us/HT213983
- https://support.apple.com/en-us/HT213984
- https://support.apple.com/en-us/HT213985
- https://support.apple.com/kb/HT213983
- https://support.apple.com/kb/HT213984
- https://support.apple.com/kb/HT213985
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime