CVE-2023-32390
Description
The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, macOS Ventura 13.4. Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup.
CWE
- CWE-125 — CWE-125 Out-of-bounds Read
Affected
- Apple / macOS — v=unspecified <13.4 [affected]
- Apple / watchOS — v=unspecified <9.5 [affected]
- Apple / iOS and iPadOS — v=unspecified <16.5 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/HT213758
- https://support.apple.com/en-us/HT213764
- https://support.apple.com/en-us/HT213757
- https://support.apple.com/kb/HT213761
Source
cvelistV5-main/cves/2023/32xxx/CVE-2023-32390.json