Multiple vulnerabilities in Apple watchOS 9

Published: 2023-09-21 | Updated: 2025-02-21

Risk	High
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2023-41992 CVE-2023-41991
CWE-ID	CWE-20 CWE-347
Exploitation vector	Network
Public exploit	Vulnerability #1 is being exploited in the wild. Vulnerability #2 is being exploited in the wild.
Vulnerable software	watchOS Operating systems & Components / Operating system
Vendor	Apple Inc.

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Input validation error

EUVDB-ID: #VU81040

Risk: High

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2023-41992

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient validation of user-supplied input within the OS kernel. A local application can execute arbitrary code on the system with elevated privileges.

Note, the vulnerability is being actively exploited in the wild.

Mitigation

Install update from vendor's website.

Vulnerable software versions

watchOS: 9.0 20R361 - 9.6.2

CPE2.3

cpe:2.3:o:apple:watchos:9.6.2:*:*:*:*:*:*:*

External links

https://support.apple.com/en-us/HT213929

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

2) Improper Verification of Cryptographic Signature

EUVDB-ID: #VU81041

Risk: High

CVSSv4.0: 8.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2023-41991

CWE-ID: CWE-347 - Improper Verification of Cryptographic Signature

Exploit availability: Yes