Vulnerability Description
This issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.2. Secure text fields may be displayed via the Accessibility Keyboard when using a physical keyboard.
CVSS Score
2.4
LOW
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Macos | >= 14.0, < 14.2 |
References
- http://seclists.org/fulldisclosure/2023/Dec/9Mailing ListThird Party Advisory
- https://support.apple.com/en-us/HT214036Release NotesVendor Advisory
- http://seclists.org/fulldisclosure/2023/Dec/9Mailing ListThird Party Advisory
- https://support.apple.com/en-us/HT214036Release NotesVendor Advisory
- https://support.apple.com/kb/HT214036
FAQ
What is CVE-2023-42874?
CVE-2023-42874 is a vulnerability with a CVSS score of 2.4 (LOW). This issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.2. Secure text fields may be displayed via the Accessibility Keyboard when using a physical keyboard.
How severe is CVE-2023-42874?
CVE-2023-42874 has been rated LOW with a CVSS base score of 2.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-42874?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Macos.