CVE-2024-40824

{"id": "CVE-2024-40824", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 2.5}]}, "published": "2024-07-29T23:15:13.990", "references": [{"url": "http://seclists.org/fulldisclosure/2024/Jul/16", "source": "product-security@apple.com"}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/18", "source": "product-security@apple.com"}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/21", "source": "product-security@apple.com"}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/22", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214117", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214119", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214122", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214124", "source": "product-security@apple.com"}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/16", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/18", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/21", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/22", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://support.apple.com/en-us/HT214117", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://support.apple.com/en-us/HT214119", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://support.apple.com/en-us/HT214122", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://support.apple.com/en-us/HT214124", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-281"}]}], "descriptions": [{"lang": "en", "value": "This issue was addressed through improved state management. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, tvOS 17.6. An app may be able to bypass Privacy preferences."}, {"lang": "es", "value": " Esta cuesti\u00f3n se abord\u00f3 mediante una mejor gesti\u00f3n estatal. Este problema se solucion\u00f3 en watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 y iPadOS 17.6, tvOS 17.6. Es posible que una aplicaci\u00f3n pueda omitir las preferencias de privacidad."}], "lastModified": "2024-11-21T09:31:42.770", "sourceIdentifier": "product-security@apple.com"}