Lucene search
AppleCVELIST:CVE-2024-27821HistoryMay 13, 2024 - 11:00 p.m.
CVE-2024-27821
2024-05-1323:00:53
apple
www.cve.org
1
cve-2024-27821
sensitive user data
path handling validation
A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. A shortcut may output sensitive user data without consent.
CNA Affected
[
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "17.5",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.5",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "watchOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "10.5",
"versionType": "custom"
}
]
}
]References
seclists.org/fulldisclosure/2024/May/10
seclists.org/fulldisclosure/2024/May/12
seclists.org/fulldisclosure/2024/May/16
support.apple.com/en-us/HT214101
support.apple.com/en-us/HT214104
support.apple.com/en-us/HT214106
support.apple.com/kb/HT214101
support.apple.com/kb/HT214104
support.apple.com/kb/HT214106
Related
nvd
nvd
CVE-2024-27821
2024-05-14 15:13:05
cve
cve
CVE-2024-27821
2024-05-14 15:13:05
apple
apple
About the security content of iOS 17.5 and iPadOS 17.5
2024-05-13 00:00:00
About the security content of watchOS 10.5
2024-05-13 00:00:00
About the security content of iOS 17.5 and iPadOS 17.5
2024-05-13 00:00:00
openvas
openvas
Apple MacOSX Security Update (HT214106)
2024-05-14 00:00:00
nessus
nessus
macOS 14.x < 14.5 Multiple Vulnerabilities (HT214106)
2024-05-13 00:00:00