Lucene search
AppleCVELIST:CVE-2024-23203HistoryJan 23, 2024 - 12:25 a.m.
CVE-2024-23203
2024-01-2300:25:33
apple
www.cve.org
1
cve-2024-23203
sensitive data
user prompt bypass
The issue was addressed with additional permissions checks. This issue is fixed in macOS Sonoma 14.3, iOS 17.3 and iPadOS 17.3. A shortcut may be able to use sensitive data with certain actions without prompting the user.
CNA Affected
[
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "17.3",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.3",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2024-23203
2024-01-23 01:15:10
nvd
nvd
CVE-2024-23203
2024-01-23 01:15:10
prion
prion
Design/Logic Flaw
2024-01-23 01:15:00
nessus
nessus
macOS 14.x < 14.3 Multiple Vulnerabilities (HT214061)
2024-01-22 00:00:00
macOS 13.x < 13.6.5 Multiple Vulnerabilities (HT214085)
2024-03-07 00:00:00
apple
apple
About the security content of iOS 17.3 and iPadOS 17.3
2024-01-22 00:00:00
About the security content of iOS 16.7.6 and iPadOS 16.7.6
2024-03-05 00:00:00
About the security content of macOS Sonoma 14.3
2024-01-22 00:00:00
openvas
openvas
Apple Mac OS X Security Update (HT214061)
2024-01-23 00:00:00
Apple Mac OS X Security Update (HT214085)
2024-03-22 00:00:00