CVE-2024-23204

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 23, 2024

Updated: Mar 13, 2024

Summary

CVE-2024-23204 is a vulnerability affecting macOS, watchOS, iOS, and iPadOS. The issue allows a shortcut to bypass user prompts and access sensitive data with certain actions. Apple addressed this security flaw by implementing additional permissions checks. This vulnerability has been resolved in macOS Sonoma 14.3, watchOS 10.3, iOS 17.3, and iPadOS 17.3.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS
Apple Watch
WatchOS
Apple (iPhone OS)
iPadOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uIDq6i
https://www.cve.org/CVERecord?id=CVE-2024-23204
https://nvd.nist.gov/vuln/detail/CVE-2024-23204

Back to Vulnerability Database