Main Vulnerability Database Vulnerabilities #VU77607

#VU77607 Integer overflow in Apple iOS and iPadOS - CVE-2023-32434

Published: June 21, 2023 / Updated: September 12, 2025

Vulnerability identifier: #VU77607

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber

CVE-ID: CVE-2023-32434

CWE-ID: CWE-190

Exploitation vector: Local access

Exploit availability: The vulnerability is being exploited in the wild

Vulnerable software:
Apple iOS
iPadOS

Software vendor:
Apple Inc.

Description

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to an integer overflow within the OS kernel. A local application can trigger an integer overflow and execute arbitrary code with kernel privileges.

Note, the vulnerability is being actively exploited in the wild.

Remediation

Install updates from vendor's website.

External links

https://support.apple.com/en-us/HT213811

#VU77607 Integer overflow in Apple iOS and iPadOS - CVE-2023-32434

Description

Remediation

External links

Please verify you're human