7.5

CVE-2024-23204

The issue was addressed with additional permissions checks. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.3 and iPadOS 17.3, macOS Monterey 12.7.4, macOS Sonoma 14.3, macOS Ventura 13.6.5, watchOS 10.3. A shortcut may be able to use sensitive data with certain actions without prompting the user.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPadOS Version > 17.0 < 17.3
AppleiPhone OS Version > 17.0 < 17.3
ApplemacOS Version < 14.3
ApplewatchOS Version < 10.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.79% 0.755
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://seclists.org/fulldisclosure/2024/Jan/33
Third Party Advisory
http://seclists.org/fulldisclosure/2024/Jan/36
Third Party Advisory
http://seclists.org/fulldisclosure/2024/Mar/22
https://support.apple.com/en-us/HT214059
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT214061
Vendor Advisory
Release Notes
https://support.apple.com/kb/HT214082
https://support.apple.com/kb/HT214085
http://seclists.org/fulldisclosure/2024/Jan/39
Third Party Advisory
http://seclists.org/fulldisclosure/2024/Mar/23
https://support.apple.com/en-us/HT214060
Vendor Advisory
Release Notes
https://support.apple.com/kb/HT214083
https://support.apple.com/kb/HT214061
https://support.apple.com/en-us/120304
https://support.apple.com/en-us/120309
https://support.apple.com/en-us/120880
https://support.apple.com/en-us/120886
https://support.apple.com/en-us/120306
https://support.apple.com/en-us/120884