CVE-2023-42951

Vulnerability

A cache handling issue in Safari and WebKit components on iOS and iPadOS could cause browsing history items to become undeletable. The vulnerability is present in versions prior to iOS 17.1 and iPadOS 17.1, affecting iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later [1]. The issue was addressed with improved handling of caches [1].

Exploitation

An attacker would need to have an app with root privileges installed on the user's device. The app then could exploit the cache handling flaw to interfere with the deletion of browsing history items, preventing the user from clearing them. The exact sequence of steps to trigger the condition is not publicly detailed, but the attack requires elevated privileges and does not require user interaction beyond normal use of the device.

Impact

A successful exploit allows an app with root privileges to prevent a user from deleting their browsing history items, potentially leaving sensitive browsing data accessible on the device. This violates the user's expectation of privacy and control over their data, though the attacker does not gain the ability to read the history; only to block its deletion.

Mitigation

Apple released fixes in iOS 17.1 and iPadOS 17.1 on October 25, 2023 [1]. Users should update their devices to the latest available version via Settings > General > Software Update. No other workarounds are provided by Apple.