CVE-2023-41775

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 8, 2023

Updated: Sep 14, 2023

Summary

CVE-2023-41775 is a vulnerability affecting the 'direct' Desktop App for macOS version 2.6.0 and earlier. This issue involves improper access control, enabling a local attacker to bypass access restrictions and gain unauthorized access to the device's camera, microphone, and other sensitive features without the user's consent. This security flaw poses a significant risk to user privacy and security. To mitigate this vulnerability, it is recommended that users update their Desktop App to the latest version as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

LISB

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/shjETw
https://www.cve.org/CVERecord?id=CVE-2023-41775
https://nvd.nist.gov/vuln/detail/CVE-2023-41775

Back to Vulnerability Database

CVE-2023-41775

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations