CVE-2024-23293

EPSS 0.08%
Published 08.03.2024 02:15:50
Last modified 09.12.2024 16:19:06
Source product-security@apple.com
Teams watchlist Login
Open Login

This issue was addressed through improved state management. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. An attacker with physical access may be able to use Siri to access sensitive user data.

Affected products Warnungen 0 Metrics 3 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Apple ≫ iPad OS Version < 17.4

Apple ≫ iPhone OS Version < 17.4

Apple ≫ macOS Version >= 14.0 < 14.4

Apple ≫ tvOS Version < 17.4

Apple ≫ watchOS Version < 10.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.08%	0.253

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.6	0.9	3.6	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	4.6	0.9	3.6	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N