CVE-2024-23207
Description
This issue was addressed with improved redaction of sensitive information. This issue is fixed in watchOS 10.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, macOS Ventura 13.6.4, macOS Monterey 12.7.3. An app may be able to access sensitive user data.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.028
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.4 (Software Update) - AutoReboot (CVE-2024-23222) | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Monterey 12.7.3 (Software Update) - (AutoReboot)(CVE-2024-23222) | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Sonoma 14.7.1 (Software Update) for MacOS 14.3.1 - AutoReboot | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Sonoma 14.3 (Software Update) - AutoReboot (CVE-2024-23222) | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Sonoma 14.3.1 (Software Update) - AutoReboot | Mac |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-611601 | Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only) |
| PATCH-608134 | Mac OS - Monterey 12.7.6 (Software Update) - AutoReboot (CVE-2024-27877) |
| PATCH-612607 | Mac OS - Sonoma 14.8.2 (Software Update)(Auto Reboot) |
| PATCH-609043 | Mac OS - Sonoma 14.7.1 (Software Update) - AutoReboot (Deployment-Only) |
| PATCH-609043 | Mac OS - Sonoma 14.7.1 (Software Update) - AutoReboot (Deployment-Only) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234