Lucene search

[email protected]NVD:CVE-2024-23210

HistoryJan 23, 2024 - 1:15 a.m.

CVE-2024-23210

2024-01-2301:15:11

[email protected]

web.nvd.nist.gov

cve-2024-23210

macos sonoma 14.3

watchos 10.3

tvos 17.3

ios 17.3

ipados 17.3

system logs

phone number

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

3.7 Low

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

21.2%

JSON

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sonoma 14.3, watchOS 10.3, tvOS 17.3, iOS 17.3 and iPadOS 17.3. An app may be able to view a user’s phone number in system logs.

Affected configurations

NVD

Node

appleipadosRange<17.3

appleiphone_osRange<17.3

applemacosRange14.0–14.3

appletvosRange<17.3

applewatchosRange<10.3

References

seclists.org/fulldisclosure/2024/Jan/33

seclists.org/fulldisclosure/2024/Jan/36

seclists.org/fulldisclosure/2024/Jan/39

seclists.org/fulldisclosure/2024/Jan/40

support.apple.com/en-us/HT214055

support.apple.com/en-us/HT214059

support.apple.com/en-us/HT214060

support.apple.com/en-us/HT214061

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

3.7 Low

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

21.2%

JSON

Related for NVD:CVE-2024-23210

prion1 cve1 cvelist1 nessus2 apple4 openvas1