CVE-2024-23207

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 23, 2024

Updated: Jan 26, 2024

Summary

CVE-2024-23207 is a vulnerability affecting multiple Apple operating systems, including watchOS 10.3, iOS 17.3, iPadOS 17.3, macOS Sonoma 14.3, macOS Ventura 13.6.4, and macOS Monterey 12.7.3. This issue involved a lack of sufficient redaction of sensitive user information, potentially allowing certain apps to access this data. The vulnerability has been addressed in the aforementioned software updates.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple Watch
MacOS
WatchOS
Apple (iPhone OS)
iPadOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uIDo-7
https://www.cve.org/CVERecord?id=CVE-2024-23207
https://nvd.nist.gov/vuln/detail/CVE-2024-23207

Back to Vulnerability Database