Integer overflow in Apple Ios And Ipados

CVE-2023-28185

An integer overflow was addressed through improved input validation. This issue is fixed in tvOS 16.4, macOS Big Sur 11.7.5, iOS 16.4 and iPadOS 16.4, watchOS 9.4, macOS Monterey 12.6.4, iOS 15.7.4 and iPadOS 15.7.4. An app may be able to…

Vulnerability class: Integer Overflow

EPSS: 0.002 (9.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2023-28185?
CVE-2023-28185 is a medium-severity vulnerability in Apple Ios And Ipados, classified under Integer Overflow or Wraparound. CVSS score: 5.5/10. Published 2024-01-10.
How severe is CVE-2023-28185?
Medium severity. CVSS v3 base score is 5.5 out of 10.