7.1

CVE-2024-40787

EPSS 0.03%
Veröffentlicht 29.07.2024 23:15:12
Zuletzt bearbeitet 02.04.2026 19:17:43
Quelle product-security@apple.com
CVE-Watchlists
Login
Unerledigt
Login

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, watchOS 10.6. A shortcut may be able to bypass Internet permission requirements.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 23

NVD 6 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apple ≫ iPadOS Version < 17.6

Apple ≫ iPhone OS Version < 17.6

Apple ≫ macOS Version < 12.7.6

Apple ≫ macOS Version >= 13.0 < 13.6.8

Apple ≫ macOS Version >= 14.0 < 14.6

Apple ≫ watchOS Version < 10.6

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.082

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://seclists.org/fulldisclosure/2024/Jul/18

Third Party Advisory

Mailing List

https://support.apple.com/kb/HT214119

http://seclists.org/fulldisclosure/2024/Jul/16

Third Party Advisory

Mailing List

http://seclists.org/fulldisclosure/2024/Jul/19

Third Party Advisory

Mailing List

http://seclists.org/fulldisclosure/2024/Jul/20

Third Party Advisory

Mailing List

http://seclists.org/fulldisclosure/2024/Jul/21

Third Party Advisory

Mailing List

https://support.apple.com/kb/HT214117

https://support.apple.com/kb/HT214118

https://support.apple.com/kb/HT214120

https://support.apple.com/kb/HT214124

https://support.apple.com/en-us/HT214118

Vendor Advisory

https://support.apple.com/en-us/HT214120

Vendor Advisory

https://support.apple.com/en-us/HT214119

Vendor Advisory

https://support.apple.com/en-us/HT214117

Vendor Advisory

https://support.apple.com/en-us/HT214124

Vendor Advisory

https://support.apple.com/en-us/120911

https://support.apple.com/en-us/120909

https://support.apple.com/en-us/120916

https://support.apple.com/en-us/120910

https://support.apple.com/en-us/120912

https://nvd.nist.gov/vuln/detail/CVE-2024-40787

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-40787

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-40787

EUVD