CVE-2023-42925

Vulnerability

CVE-2023-42925 affects Apple iOS 17.0, iPadOS 17.0, and macOS Sonoma 14.0. The issue lies in the Notes app data container, where insufficient access restriction allows a malicious app to read Notes attachments. No special configuration or user interaction is required beyond the presence of the app on the device.

Exploitation

An attacker requires only the ability to install and run a malicious app on the target device. The app can then exploit the inadequate data container access control to read attachments stored within the Notes app. No network position or physical access is necessary.

Impact

Successful exploitation leads to unauthorized disclosure of Notes attachments, potentially exposing private notes, images, and other sensitive data. This is a confidentiality breach at the app sandbox level.

Mitigation

Apple addressed CVE-2023-42925 in iOS 17.0 and iPadOS 17.0 (released September 18, 2023) and macOS Sonoma 14.0 (released September 26, 2023). Updating to these versions or later mitigates the vulnerability. No workarounds are documented; the fix is included in the respective operating system updates [1][2].