CVE-2024-23217

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14.3, watchOS 10.3, iOS 17.3 and iPadOS 17.3. An app may be able to bypass certain Privacy preferences.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*

History

13 Mar 2024, 22:15

Type Values Removed Values Added
References
  • () http://seclists.org/fulldisclosure/2024/Mar/22 -

08 Mar 2024, 19:15

Type Values Removed Values Added
References
  • () https://support.apple.com/kb/HT214085 -

30 Jan 2024, 15:58

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 3.3
CWE NVD-CWE-noinfo
CPE cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
References () https://support.apple.com/en-us/HT214059 - () https://support.apple.com/en-us/HT214059 - Release Notes, Vendor Advisory
References () http://seclists.org/fulldisclosure/2024/Jan/36 - () http://seclists.org/fulldisclosure/2024/Jan/36 - Third Party Advisory
References () http://seclists.org/fulldisclosure/2024/Jan/33 - () http://seclists.org/fulldisclosure/2024/Jan/33 - Third Party Advisory
References () https://support.apple.com/en-us/HT214061 - () https://support.apple.com/en-us/HT214061 - Release Notes, Vendor Advisory
References () http://seclists.org/fulldisclosure/2024/Jan/39 - () http://seclists.org/fulldisclosure/2024/Jan/39 - Third Party Advisory
References () https://support.apple.com/en-us/HT214060 - () https://support.apple.com/en-us/HT214060 - Release Notes, Vendor Advisory
First Time Apple iphone Os
Apple watchos
Apple
Apple macos
Apple ipados

26 Jan 2024, 18:15

Type Values Removed Values Added
References
  • () http://seclists.org/fulldisclosure/2024/Jan/36 -
  • () http://seclists.org/fulldisclosure/2024/Jan/33 -
  • () http://seclists.org/fulldisclosure/2024/Jan/39 -

23 Jan 2024, 01:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-01-23 01:15

Updated : 2024-03-13 22:15


NVD link : CVE-2024-23217

Mitre link : CVE-2024-23217

CVE.ORG link : CVE-2024-23217


JSON object : View

Products Affected

apple

  • iphone_os
  • ipados
  • macos
  • watchos