CVE-2023-32352

Vulnerability

A logic issue in Gatekeeper, addressed with improved checks, allows an app to bypass Gatekeeper security checks. This vulnerability affects macOS Ventura prior to 13.4, macOS Big Sur prior to 11.7.7, macOS Monterey prior to 12.6.6, iOS and iPadOS prior to 16.5, watchOS prior to 9.5, and tvOS prior to 16.5 [1][2][4].

Exploitation

An attacker would need to convince a user to run a malicious app, or the attacker must have the ability to install an app on the system. No user interaction beyond launching the app is required; the app can bypass Gatekeeper's validation of code signing and notarization [1].

Impact

A malicious app can bypass Gatekeeper checks, potentially allowing execution of untrusted code without the user being warned. This could lead to arbitrary code execution under the user's privileges or further compromise of the system [1].

Mitigation

Apple released fixes in macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5, watchOS 9.5, and tvOS 16.5 on May 18, 2023 [1][2][3][4]. Updates are available via Software Update or Apple's support website. No workarounds are documented.