CVE-2023-41991: Apple Multiple Products Improper Certificate Validation
Apple Multiple Products Improper Certificate Validation Vulnerability. Apple iOS, iPadOS, macOS, and watchOS contain an improper certificate validation vulnerability that can allow a malicious app to bypass signature validation.
- CISA KEV-listed (remediation due 2023-10-16)
- EPSS 3.9% (88.5% percentile)