A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8. An app may be able to read sensitive location information.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT213842 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213844 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213845 | Release Notes Vendor Advisory |
https://support.apple.com/kb/HT213841 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
22 Dec 2023, 16:10
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://support.apple.com/kb/HT213841 - Release Notes, Vendor Advisory |
01 Nov 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Sep 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
Summary | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8. An app may be able to read sensitive location information. |
13 Sep 2023, 03:47
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://support.apple.com/en-us/HT213845 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213842 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213844 - Release Notes, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 3.3 |
CWE | CWE-532 | |
CPE | cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* |
|
First Time |
Apple macos
Apple ipados Apple Apple iphone Os |
12 Sep 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-12 00:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-40442
Mitre link : CVE-2023-40442
CVE.ORG link : CVE-2023-40442
JSON object : View
Products Affected
apple
- ipados
- macos
- iphone_os
CWE
CWE-532
Insertion of Sensitive Information into Log File