CVE-2023-40388

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Sep 27, 2023

Updated: Oct 12, 2023

Summary

CVE-2023-40388 is a privacy vulnerability affecting macOS Sonoma 14 and its Safari browser. The issue involves Safari inadvertently saving photos to an unprotected location instead of the intended private folder during the temporary file handling process. This vulnerability could potentially expose users' images to unauthorized access if an attacker gains access to the system. The vulnerability has been resolved with improved handling of temporary files in the latest update.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sWE02Y
https://www.cve.org/CVERecord?id=CVE-2023-40388
https://nvd.nist.gov/vuln/detail/CVE-2023-40388

Back to Vulnerability Database