7.5

CVE-2024-23204

The issue was addressed with additional permissions checks. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.3 and iPadOS 17.3, macOS Monterey 12.7.4, macOS Sonoma 14.3, macOS Ventura 13.6.5, watchOS 10.3. A shortcut may be able to use sensitive data with certain actions without prompting the user.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPadOS Version > 17.0 < 17.3
AppleiPhone OS Version > 17.0 < 17.3
ApplemacOS Version < 14.3
ApplewatchOS Version < 10.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.357
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://support.apple.com/en-us/HT214059
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT214061
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT214060
Vendor Advisory
Release Notes