3.3

CVE-2023-40442

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8. An app may be able to read sensitive location information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPadOS Version < 15.7.8
AppleiPadOS Version >= 16.0 < 16.6
AppleiPhone OS Version < 15.7.8
AppleiPhone OS Version >= 16.0 < 16.6
ApplemacOS Version >= 11.0 < 11.7.9
ApplemacOS Version >= 12.0.0 < 12.6.8
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.2% 0.093
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.3 1.8 1.4
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
CWE-532 Insertion of Sensitive Information into Log File

The product writes sensitive information to a log file.

https://support.apple.com/kb/HT213841
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213842
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213844
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213845
Vendor Advisory
Release Notes