CVE-2024-23206

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 23, 2024

Updated: Jun 12, 2024

Summary

CVE-2024-23206 is a recently identified access issue that has been addressed through improved access restrictions. This vulnerability affects multiple Apple platforms, including watchOS 10.3, tvOS 17.3, iOS 17.3, and iPadOS 17.3, as well as macOS Sonoma 14.3, iOS 16.7.5, and iPadOS 16.7.5. Moreover, it extends to Safari 17.3. A maliciously crafted webpage can potentially exploit this weakness and gather user information, specifically through fingerprinting. Users are strongly advised to install the relevant software updates to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uIDDSi
https://www.cve.org/CVERecord?id=CVE-2024-23206
https://nvd.nist.gov/vuln/detail/CVE-2024-23206

Back to Vulnerability Database

CVE-2024-23206

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations