CVE-2023-42935

medium

Description

An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.6.4. A local attacker may be able to view the previous logged in user’s desktop from the fast user switching screen.

References

https://support.apple.com/kb/HT213984

https://support.apple.com/en-us/HT214058

http://seclists.org/fulldisclosure/2024/Jan/37

Details

Source: Mitre, NVD

Published: 2024-01-23

Updated: 2024-01-29

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N