CVE-2023-27946 – CVE-2023-27946 is an out-of-bounds read vulnera... (How to Fix)

Q: What is the severity of CVE-2023-27946?

CVE-2023-27946 has a CVSS score of 7.8 (HIGH). CVE-2023-27946 is an out-of-bounds read vulnerability in Apple operating systems that could allow arbitrary code execution when processing malicious files. This affects macOS, iOS, and iPadOS users running vulnerable versions. Successful exploitation could lead to complete system compromise.

📋 TL;DR

CVE-2023-27946 is an out-of-bounds read vulnerability in Apple operating systems that could allow arbitrary code execution when processing malicious files. This affects macOS, iOS, and iPadOS users running vulnerable versions. Successful exploitation could lead to complete system compromise.

💻 Affected Systems

Products:

macOS
iOS
iPadOS

Versions: Versions before macOS Ventura 13.3, iOS 15.7.4, iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5

Operating Systems: macOS, iOS, iPadOS

Default Config Vulnerable: ⚠️ Yes

Notes: All default configurations are vulnerable. The vulnerability is in the operating system kernel/processing components.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote attacker achieves full system compromise with kernel-level privileges, leading to data theft, persistence, and lateral movement.

🟠

Likely Case

Application crashes (DoS) or limited code execution in user context when processing malicious files.

🟢

If Mitigated

No impact if systems are patched or file processing is restricted to trusted sources.

🌐 Internet-Facing: MEDIUM - Requires user interaction to open malicious file, but could be delivered via web or email.

🏢 Internal Only: MEDIUM - Internal users could be tricked into opening malicious files, but requires some user interaction.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires user interaction to process malicious file. No public exploit code is known at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: macOS Ventura 13.3, iOS 15.7.4, iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5

Vendor Advisory: https://support.apple.com/en-us/HT213670

Restart Required: Yes

Instructions:

1. Open System Settings > General > Software Update. 2. Install available updates. 3. Restart device when prompted.

🔧 Temporary Workarounds

Restrict file processing

all

Limit processing of untrusted files and use application sandboxing where possible.

🧯 If You Can't Patch

Implement application whitelisting to prevent execution of untrusted applications
Use network segmentation to isolate vulnerable systems and restrict file transfers

🔍 How to Verify

Check if Vulnerable:

Check system version against affected versions list. On macOS: About This Mac > macOS version. On iOS/iPadOS: Settings > General > About > Version.

Check Version:

macOS: sw_vers -productVersion; iOS/iPadOS: Not available via command line (check Settings)

Verify Fix Applied:

Verify system version matches or exceeds patched versions listed in fix_official.patch_version.

📡 Detection & Monitoring

Log Indicators:

Application crashes related to file processing
Kernel panic logs

Network Indicators:

Unusual file downloads from untrusted sources
Suspicious email attachments

SIEM Query:

source="apple_system_logs" AND (event="crash" OR event="panic") AND process="*file*processor*"

📊 Metadata

CVE ID: CVE-2023-27946

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-125

Published: May 8, 2023

Last Updated: January 29, 2025

🔗 References

https://support.apple.com/en-us/HT213670 Vendor Advisory
https://support.apple.com/en-us/HT213673 Vendor Advisory
https://support.apple.com/en-us/HT213675 Vendor Advisory
https://support.apple.com/en-us/HT213677 Vendor Advisory
https://support.apple.com/en-us/HT213670 Vendor Advisory
https://support.apple.com/en-us/HT213673 Vendor Advisory
https://support.apple.com/en-us/HT213675 Vendor Advisory
https://support.apple.com/en-us/HT213677 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-27946, you might also want to check these: