Lucene search
HistoryMay 14, 2024 - 3:13 p.m.
CVE-2024-27821
path handling
validation
ios
ipados
watchos
macos
sensitive data
consent
A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. A shortcut may output sensitive user data without consent.
References
seclists.org/fulldisclosure/2024/May/10
seclists.org/fulldisclosure/2024/May/12
seclists.org/fulldisclosure/2024/May/16
support.apple.com/en-us/HT214101
support.apple.com/en-us/HT214104
support.apple.com/en-us/HT214106
support.apple.com/kb/HT214101
support.apple.com/kb/HT214104
support.apple.com/kb/HT214106
Related
cvelist
cvelist
CVE-2024-27821
2024-05-13 23:00:53
cve
cve
CVE-2024-27821
2024-05-14 15:13:05
apple
apple
About the security content of iOS 17.5 and iPadOS 17.5
2024-05-13 00:00:00
About the security content of watchOS 10.5
2024-05-13 00:00:00
About the security content of iOS 17.5 and iPadOS 17.5
2024-05-13 00:00:00
nessus
nessus
macOS 14.x < 14.5 Multiple Vulnerabilities (HT214106)
2024-05-13 00:00:00
openvas
openvas
Apple MacOSX Security Update (HT214106)
2024-05-14 00:00:00