Vulnerabilities > CVE-2024-40833 - Unspecified vulnerability in Apple Iphone OS and Macos
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to use sensitive data with certain actions without prompting the user.
Vulnerable Configurations
References
- https://support.apple.com/en-us/HT214116
- https://support.apple.com/en-us/HT214120
- https://support.apple.com/en-us/HT214119
- https://support.apple.com/en-us/HT214118
- http://seclists.org/fulldisclosure/2024/Jul/20
- http://seclists.org/fulldisclosure/2024/Jul/17
- http://seclists.org/fulldisclosure/2024/Jul/18
- http://seclists.org/fulldisclosure/2024/Jul/19