PRIOn knowledge basePRION:CVE-2024-23223

HistoryJan 23, 2024 - 1:15 a.m.

Code injection

2024-01-2301:15:00

PRIOn knowledge base

www.prio-n.com

code injection

privacy issue

file handling

macos

watchos

tvos

ios

ipados

sensitive user data

5.5 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.5%

JSON

A privacy issue was addressed with improved handling of files. This issue is fixed in macOS Sonoma 14.3, watchOS 10.3, tvOS 17.3, iOS 17.3 and iPadOS 17.3. An app may be able to access sensitive user data.

CPENameOperatorVersion
ipadoslt17.3
iphone_oslt17.3
macosge14.0
macoslt14.3
tvoslt17.3
watchoslt10.3

Name	Operator	Version
ipados	lt	17.3
iphone_os	lt	17.3
macos	ge	14.0
macos	lt	14.3
tvos	lt	17.3
watchos	lt	10.3

References

seclists.org/fulldisclosure/2024/Jan/33

seclists.org/fulldisclosure/2024/Jan/36

seclists.org/fulldisclosure/2024/Jan/39

seclists.org/fulldisclosure/2024/Jan/40

support.apple.com/en-us/HT214055

support.apple.com/en-us/HT214059

support.apple.com/en-us/HT214060

support.apple.com/en-us/HT214061