CVE-2023-23523

Vulnerability

A logic issue in the Visual Lookup feature allowed photos in the Hidden Photos Album to be viewed without authentication. This affects macOS Ventura versions before 13.3, iOS before 16.4, and iPadOS before 16.4 [1][2]. The bug arises from insufficient restrictions when Visual Lookup processes hidden album content.

Exploitation

An attacker with physical access to the device or the ability to trigger Visual Lookup (e.g., by interacting with a photo) could bypass the hidden album's authentication. No special privileges or user interaction beyond normal usage is required; the vulnerability is triggered when Visual Lookup is invoked on a photo that belongs to the Hidden Photos Album.

Impact

Successful exploitation allows unauthorized viewing of photos from the Hidden Photos Album, bypassing the authentication protection intended to keep them private. This constitutes a privacy breach and unauthorized information disclosure.

Mitigation

The issue is fixed in macOS Ventura 13.3, iOS 16.4, and iPadOS 16.4, released on March 27, 2023 [1][2]. No workarounds have been published, and the vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog. Users should update their devices to the latest available versions.