CVE-2024-23217

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Jan 23, 2024

Updated: Mar 13, 2024

Summary

CVE-2024-23217 is a privacy vulnerability affecting macOS Sonoma 14.2 and earlier, watchOS 10.2 and earlier, iOS 17.2 and earlier, and iPadOS 17.2 and earlier. This issue stems from improper handling of temporary files, allowing certain apps to bypass specific Privacy preferences. Users are advised to update their systems to macOS Sonoma 14.3, watchOS 10.3, iOS 17.3, and iPadOS 17.3 to address this concern and maintain the confidentiality of their personal data.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
iPadOS
Apple Watch
WatchOS
MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uIDo-9
https://www.cve.org/CVERecord?id=CVE-2024-23217
https://nvd.nist.gov/vuln/detail/CVE-2024-23217

Back to Vulnerability Database