CVE-2024-23295

2024-03-0801:35:20

apple

www.cve.org

permissions issue

unauthenticated user

visionos 1.1

AI Score

7.4

Confidence

High

EPSS

Percentile

9.0%

JSON

A permissions issue was addressed to help ensure Personas are always protected This issue is fixed in visionOS 1.1. An unauthenticated user may be able to use an unprotected Persona.

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "visionOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "1.1",
        "versionType": "custom"
      }
    ]
  }
]

References

seclists.org/fulldisclosure/2024/Mar/26

support.apple.com/en-us/HT214087