Lucene search

[email protected]NVD:CVE-2023-32386

HistoryJun 23, 2023 - 6:15 p.m.

CVE-2023-32386

2023-06-2318:15:12

[email protected]

web.nvd.nist.gov

privacy handling

temporary files

macos

data observation

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

2.8 Low

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to observe unprotected user data.

Affected configurations

NVD

Node

applemacosRange11.0–11.7.7

applemacosRange12.0.0–12.6.6

applemacosRange13.0–13.4

References

support.apple.com/en-us/HT213758

support.apple.com/en-us/HT213759

support.apple.com/en-us/HT213760

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

2.8 Low

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

Related for NVD:CVE-2023-32386

cve1 cvelist1 prion1 nessus3 openvas3 apple3