Lucene search

K
cvelistAppleCVELIST:CVE-2023-40528
HistoryJan 23, 2024 - 12:25 a.m.

CVE-2023-40528

2024-01-2300:25:18
apple
www.cve.org
apple
security issue
privacy bypass
ios 17
macos ventura 13.6.4
tvos 17
watchos 10
macos sonoma 14
ipados 17

6.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

21.6%

This issue was addressed by removing the vulnerable code. This issue is fixed in tvOS 17, watchOS 10, macOS Sonoma 14, iOS 17 and iPadOS 17, macOS Ventura 13.6.4. An app may be able to bypass Privacy preferences.

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "17",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "macOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "13.6",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "tvOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "17",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "macOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "14",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "watchOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "10",
        "versionType": "custom"
      }
    ]
  }
]

6.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

21.6%

Related for CVELIST:CVE-2023-40528