Rewterz Threat Advisory – CVE-2023-34478 – Apache Shiro Vulnerability
July 25, 2023Rewterz Threat Alert – BlackByte 2.0: The Ransomware That Strikes In 5 Days – Active IOCs
July 25, 2023Rewterz Threat Advisory – CVE-2023-34478 – Apache Shiro Vulnerability
July 25, 2023Rewterz Threat Alert – BlackByte 2.0: The Ransomware That Strikes In 5 Days – Active IOCs
July 25, 2023Severity
Medium
Analysis Summary
CVE-2023-32437
Apple iOS and iPadOS could allow a local attacker to bypass security restrictions, caused by an issue in the NSURLSession component. By using a specially crafted application, an attacker could exploit this vulnerability to break out of its sandbox.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2023-32437
Affected Vendors
Apple
Affected Products
- Apple iOS 16.5.0
- Apple iPadOS 16.5.0
Remediation
Refer to Apple Security Document for patch, upgrade or suggested workaround information.