Privilege escalation vulnerability in Login Window in Apple Mac OS - CVE-2023-42861ID: oval:org.secpod.oval:def:94065 | Date: (C)2023-10-26 (M)2024-06-17 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS 14 before 14.1, or Apple Mac OS 13 before 13.6.7 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle issues in state management. On successful exploitation, an attacker with knowledge of a standard user's credentials can unlock another standard user's locked screen on the same mac.
Platform: |
Apple Mac OS 13 |
Apple Mac OS 14 |