CVE-2023-28206CISA KEVEPSS p97.6%

CVE-2023-28206Apple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnerability

Apple / iOS, iPadOS, and macOS

Description

Apple iOS, iPadOS, and macOS IOSurfaceAccelerator contain an out-of-bounds write vulnerability that allows an app to execute code with kernel privileges.

Scoring

EPSS24.51% probability of exploitation · percentile 97.6% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2023-04-10

(incoming)1

TypeTargetConfidenceTier
KEVEntryApple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnerabilitykev-cve-2023-282060%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2022-42827
CVE
Apple iOS and macOS Out-of-Bounds Write Vulnerability
CVE
Apple iOS, iPadOS, and macOS Out-of-Bounds Write Vulnerability
CVE
Apple iOS and iPadOS Buffer Overflow Vulnerability
CVE
Apple iOS and iPadOS Kernel Privilege Escalation Vulnerability
CVE
Apple Multiple Products Memory Corruption Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.