Lucene search
HistoryJun 10, 2024 - 9:15 p.m.
CVE-2024-23282
improved checks
macos sonoma 14.5
watchos 10.5
ios 17.5
ipados 17.5
facetime calls
user authorization
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5, watchOS 10.5, iOS 17.5 and iPadOS 17.5, iOS 16.7.8 and iPadOS 16.7.8. A maliciously crafted email may be able to initiate FaceTime calls without user authorization.
Affected configurations
Node
appleiphone_osRange<17.5
ORappleipad_osRange<17.5
ORappleiphone_osRange<16.7
ORappleipad_osRange<16.7
ORapplemacosRange<14.5
ORapplewatchosRange<10.5
CNA Affected
[
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "17.5",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "16.7",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.5",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "watchOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "10.5",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2024-23282
2024-06-10 20:56:36
nvd
nvd
CVE-2024-23282
2024-06-10 21:15:49
apple
apple
About the security content of iOS 16.7.8 and iPadOS 16.7.8
2024-05-13 00:00:00
About the security content of watchOS 10.5
2024-05-13 00:00:00
About the security content of iOS 17.5 and iPadOS 17.5
2024-05-13 00:00:00
openvas
openvas
Apple MacOSX Security Update (HT214106)
2024-05-14 00:00:00
nessus
nessus
macOS 14.x < 14.5 Multiple Vulnerabilities (HT214106)
2024-05-13 00:00:00