CVE-2023-40440

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 12, 2023

Updated: Jan 30, 2024

Summary

CVE-2023-40440 is a vulnerability affecting macOS Monterey that impacts the handling of S/MIME encrypted emails. This issue resulted in encrypted emails being sent unencrypted due to insufficient state management. The vulnerability has been resolved in macOS Monterey 12.6.8 with improved email encryption handling to mitigate this risk. Users are advised to update their systems as soon as possible to protect against potential data leakage.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sWFKug
https://www.cve.org/CVERecord?id=CVE-2023-40440
https://nvd.nist.gov/vuln/detail/CVE-2023-40440

Back to Vulnerability Database