CVE-2023-40406

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 27, 2023

Updated: Nov 7, 2023

Summary

CVE-2023-40406 is a vulnerability affecting multiple versions of macOS. This issue allowed certain applications to access and read arbitrary files, posing a potential security risk. The vulnerability has been addressed in recent macOS updates, including Monterey 12.7, Ventura 13.6, and Sonoma 14, through improved file access checks. By enhancing these checks, the risk of unauthorized file reading has been mitigated.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sWFCdP
https://www.cve.org/CVERecord?id=CVE-2023-40406
https://nvd.nist.gov/vuln/detail/CVE-2023-40406

Back to Vulnerability Database