CVE-2023-40442

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Sep 12, 2023

Updated: Dec 22, 2023

CWE ID 532

Summary

CVE-2023-40442 is a privacy vulnerability affecting macOS Big Sur, iOS 15, and iPadOS 15. This issue allowed certain apps to access sensitive location information from log entries, despite private data redaction improvements. The vulnerability has been resolved in the latest updates of these operating systems - macOS Big Sur 11.7.9, iOS 15.7.8, and iPadOS 15.7.8, as well as macOS Monterey 12.6.8.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
iPadOS
MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sWE02o
https://www.cve.org/CVERecord?id=CVE-2023-40442
https://nvd.nist.gov/vuln/detail/CVE-2023-40442

Back to Vulnerability Database