CVE-2023-32390

Vulnerability

The vulnerability exists in the Visual Lookup feature on Apple devices. It allowed photos stored in the Hidden Photos Album to be viewed without requiring authentication. This issue affects iOS and iPadOS versions prior to 16.5, watchOS versions prior to 9.5, and macOS Ventura versions prior to 13.4. The problem was addressed by adding improved checks to ensure that hidden photos are not accessible without proper authentication [1][2][4].

Exploitation

An attacker who can interact with the Visual Lookup feature on an affected device (e.g., by using it on a photo) could bypass the authentication normally required to view the Hidden Photos Album. No special network position or additional privileges are needed; the attacker only needs physical or remote access to trigger Visual Lookup on a device running an unpatched version of the operating system.

Impact

Successful exploitation leads to the disclosure of private photos that the user intended to hide. This is a breach of confidentiality, as the attacker gains unauthorized access to sensitive visual data that is supposed to be protected by authentication.

Mitigation

Apple has released fixes in iOS 16.5, iPadOS 16.5, watchOS 9.5, and macOS Ventura 13.4, which were published on May 18, 2023 [1][2][4]. Users should update their devices to the latest versions. No workarounds are available for unpatched systems.