3.3
CVE-2024-23210
- EPSS 0.33%
- Veröffentlicht 23.01.2024 01:15:11
- Zuletzt bearbeitet 02.04.2026 19:16:55
- Quelle product-security@apple.com
- CVE-Watchlists
- Unerledigt
This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, tvOS 17.3, watchOS 10.3. An app may be able to view a user's phone number in system logs.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.33% | 0.241 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 3.3 | 1.8 | 1.4 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 3.3 | 1.8 | 1.4 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
|
CWE-532 Insertion of Sensitive Information into Log File
The product writes sensitive information to a log file.
http://seclists.org/fulldisclosure/2024/Jan/33
http://seclists.org/fulldisclosure/2024/Jan/36
https://support.apple.com/en-us/HT214059
https://support.apple.com/en-us/HT214061
http://seclists.org/fulldisclosure/2024/Jan/39
https://support.apple.com/en-us/HT214060
http://seclists.org/fulldisclosure/2024/Jan/40
https://support.apple.com/en-us/HT214055
https://support.apple.com/kb/HT214055
https://support.apple.com/kb/HT214061
https://support.apple.com/en-us/120304
https://support.apple.com/en-us/120309
https://support.apple.com/en-us/120311
https://support.apple.com/en-us/120306