CVE-2023-42872

The issue was addressed with additional permissions checks. This issue is fixed in macOS Sonoma 14, iOS 17 and iPadOS 17. An app may be able to access sensitive user data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
appleCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
VendorProductVersion
applesafari
𝑥
< 17.0
appleipados
𝑥
< 17.0
appleiphone_os
𝑥
< 17.0
applemacos
𝑥
< 14.0
𝑥
= Vulnerable software versions
References
https://support.apple.com/en-us/HT213938
https://support.apple.com/en-us/HT213940
https://support.apple.com/en-us/HT213938
https://support.apple.com/en-us/HT213940