5.5
CVE-2023-40413
- EPSS 0.47%
- Veröffentlicht 25.10.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 08:19:24
- Quelle product-security@apple.com
- CVE-Watchlists
- Unerledigt
The issue was addressed with improved handling of caches. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Monterey 12.7.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1, macOS Sonoma 14.1. An app may be able to read sensitive location information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.47% | 0.369 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
|
http://seclists.org/fulldisclosure/2023/Oct/24
https://support.apple.com/kb/HT213984
http://seclists.org/fulldisclosure/2023/Oct/26
https://support.apple.com/kb/HT213985
http://seclists.org/fulldisclosure/2023/Oct/23
https://support.apple.com/en-us/HT213981
https://support.apple.com/en-us/HT213985
https://support.apple.com/en-us/HT213984
http://seclists.org/fulldisclosure/2023/Oct/19
http://seclists.org/fulldisclosure/2023/Oct/25
https://support.apple.com/en-us/HT213982
https://support.apple.com/en-us/HT213988
https://support.apple.com/kb/HT213981
https://support.apple.com/kb/HT213982
https://support.apple.com/kb/HT213988
http://seclists.org/fulldisclosure/2023/Oct/21
https://support.apple.com/en-us/HT213983
https://support.apple.com/kb/HT213983