Rewterz

Rewterz Threat Alert – Banking Sector Targeted In Open-Source Software Supply Chain Attacks – Active IOCs

July 26, 2023
Rewterz

Rewterz Threat Alert – Chaos Ransomware – Active IOCs

July 26, 2023

Rewterz Threat Alert – CVE-2023-38606 – Apple macOS, iOS and iPadOS Vulnerability Exploited in the Wild

Severity

Medium

Analysis Summary

CVE-2023-38606

Apple macOS, iOS and iPadOS could allow a local attacker to bypass security restrictions, caused by a flaw in the Kernel module. By using a specially crafted application, an attacker could exploit this vulnerability to modify sensitive kernel state.

Impact

  • Security Bypass

Indicators Of Compromise

CVE

  • CVE-2023-22023

Affected Vendors

Apple

Affected Products

  • Apple iOS 16.5.1
  • Apple iPadOS 16.5.1
  • Apple macOS Ventura 13.4.1
  • Apple iOS 15.7.7

Remediation

Refer to Apple security document for patch, upgrade or suggested workaround information

Apple iOS 16.6 and Apple iPadOS 16.6

Apple macOS Ventura 13.5

Apple iOS 15.7.8

Apple macOS Monterey 12.6.8

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.