This issue was addressed with improved state management. This issue is fixed in iOS 17.1 and iPadOS 17.1. An attacker with physical access may be able to silently persist an Apple ID on an erased device.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/HT213982 | Vendor Advisory |
| https://support.apple.com/en-us/HT213982 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
03 Dec 2024, 17:32
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Apple iphone Os
Apple Apple ipad Os |
|
| References | () https://support.apple.com/en-us/HT213982 - Vendor Advisory | |
| CPE | cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:* |
|
| CWE | NVD-CWE-noinfo |
21 Nov 2024, 08:23
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://support.apple.com/en-us/HT213982 - |
01 Nov 2024, 20:35
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.6 |
21 Feb 2024, 07:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-02-21 07:15
Updated : 2024-12-03 17:32
NVD link : CVE-2023-42855
Mitre link : CVE-2023-42855
CVE.ORG link : CVE-2023-42855
JSON object : View
Products Affected
apple
- ipad_os
- iphone_os
CWE