Integer overflow vulnerability in Foundation in Apple Mac OS - CVE-2023-27937ID: oval:org.secpod.oval:def:88669 | Date: (C)2023-03-28 (M)2024-01-23 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS 11 before 11.7.5, Apple Mac OS 12 before 12.6.4 or Apple Mac OS 13 before 13.3 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to properly handle issues in improved input validation. On successful exploitation, parsing a maliciously crafted plist may lead to an unexpected app termination or arbitrary code execution.
Platform: |
Apple Mac OS 13 |
Apple Mac OS 12 |
Apple Mac OS 11 |