Lucene search
AppleCVE-2023-42940HistoryDec 19, 2023 - 10:15 p.m.
CVE-2023-42940
2023-12-1922:15:07
apple
web.nvd.nist.gov
431
cve-2023-42940
session rendering
session tracking
macos
sonoma
security issue
CVSS3
5.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
AI Score
4.6
Confidence
High
EPSS
0.001
Percentile
29.9%
A session rendering issue was addressed with improved session tracking. This issue is fixed in macOS Sonoma 14.2.1. A user who shares their screen may unintentionally share the incorrect content.
Affected configurations
Node
applemacosRange14.0–14.2.1
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.2",
"versionType": "custom"
}
]
}
]Related
nessus
nessus
macOS 14.x < 14.2.1 (HT214048)
2023-12-19 00:00:00
cvelist
cvelist
CVE-2023-42940
2023-12-19 21:13:43
nvd
nvd
CVE-2023-42940
2023-12-19 22:15:07
openvas
openvas
Apple Mac OS X Security Update (HT214048)
2024-01-08 00:00:00
prion
prion
Session fixation
2023-12-19 22:15:00
apple
apple
About the security content of macOS Sonoma 14.2.1
2023-12-19 00:00:00
CVSS3
5.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
AI Score
4.6
Confidence
High
EPSS
0.001
Percentile
29.9%
Related for CVE-2023-42940