← volver
CVE-2024-23203

CVE-2024-23203

CVSS 7.5 HIGHEPSS 0.9%
The issue was addressed with additional permissions checks. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, macOS Ventura 13.6.5. A shortcut may be able to use sensitive data with certain actions without prompting the user.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Productos afectados
Apple · iOS and iPadOSApple · macOS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://seclists.org/fulldisclosure/2024/Jan/33http://seclists.org/fulldisclosure/2024/Jan/36http://seclists.org/fulldisclosure/2024/Mar/22https://support.apple.com/en-us/120304https://support.apple.com/en-us/120309https://support.apple.com/en-us/120880https://support.apple.com/en-us/120886https://support.apple.com/en-us/HT214059https://support.apple.com/en-us/HT214061https://support.apple.com/kb/HT214061https://support.apple.com/kb/HT214082https://support.apple.com/kb/HT214085