AI description
CVE-2023-42824 is a kernel vulnerability affecting iPhones and iPads that could allow a local attacker to elevate their privileges. Apple is aware of reports that this issue may have been actively exploited against versions of iOS before iOS 16.6. The vulnerability impacts iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later. It was addressed with improved checks in iOS 16.7.1 and iPadOS 16.7.1.
- Description
- The issue was addressed with improved checks. This issue is fixed in iOS 16.7.1 and iPadOS 16.7.1. A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6.
- Source
- product-security@apple.com
- NVD status
- Analyzed
- Products
- ipados, iphone_os
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Apple iOS and iPadOS Kernel Privilege Escalation Vulnerability
- Exploit added on
- Oct 5, 2023
- Exploit action due
- Oct 26, 2023
- Required action
- Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
2
a rough version of CVE-2023-42824(vo_copy) exploitation. https://t.co/gwCWU66AgS
@minacrissDev_
7 Nov 2025
598 Impressions
0 Retweets
3 Likes
1 Bookmark
0 Replies
0 Quotes
a rough version of CVE-2023-42824(vo_copy) exploitation. https://t.co/EPDO9gv4yX
@ProteasWang
7 Nov 2025
5050 Impressions
6 Retweets
73 Likes
18 Bookmarks
2 Replies
0 Quotes
CVE-2023-42824 (vo_copy) appears to only break CoW for anonymous memory. For now it looks like an intermediate step in an exploitation chain rather than the final vulnerability used for privilege escalation.
@ProteasWang
21 Oct 2025
2166 Impressions
1 Retweet
13 Likes
6 Bookmarks
0 Replies
0 Quotes
Heard rumors (unconfirmed as of today at 1pm) about an update to the old 2023 security vulnerability in iOS 17’s kernel (CVE-2023-42824). This update uses same type of arbitrary code execution with kernel level privileges. This is a locally exploitable vulnerability,
@zeroday31337
4 Jan 2025
29 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EDDE4794-A831-4132-910D-AF5714964F39",
"versionEndExcluding": "16.7.1"
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5383A8BF-7AD6-4D5A-9B57-DE1BC2C59E09",
"versionEndExcluding": "17.0.3",
"versionStartIncluding": "17.0"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "52D04CC0-37F2-4214-9B91-8FA97E856210",
"versionEndExcluding": "16.7.1"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F1D28032-F9E6-45E7-98B6-7CE2351C4C99",
"versionEndExcluding": "17.0.3",
"versionStartIncluding": "17.0"
}
],
"operator": "OR"
}
]
}
]