CVE-2024-23231

EUVD-2024-20750
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, watchOS 10.4. An app may be able to access user-sensitive data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
Affected Products (NVD)
VendorProductVersion
appleipados
𝑥
< 16.7.6
appleipados
17.0 ≤
𝑥
< 17.4
appleiphone_os
𝑥
< 16.7.6
appleiphone_os
17.0 ≤
𝑥
< 17.4
applemacos
13.0 ≤
𝑥
< 13.6.5
applemacos
14.0 ≤
𝑥
< 14.4
applewatchos
𝑥
< 10.4
𝑥
= Vulnerable software versions
References
https://support.apple.com/en-us/120880
https://support.apple.com/en-us/120881
https://support.apple.com/en-us/120886
https://support.apple.com/en-us/120893
https://support.apple.com/en-us/120895
http://seclists.org/fulldisclosure/2024/Mar/21
http://seclists.org/fulldisclosure/2024/Mar/22
http://seclists.org/fulldisclosure/2024/Mar/24
https://support.apple.com/en-us/HT214081
https://support.apple.com/en-us/HT214082
https://support.apple.com/en-us/HT214084
https://support.apple.com/en-us/HT214085
https://support.apple.com/en-us/HT214088
https://support.apple.com/kb/HT214082
https://support.apple.com/kb/HT214084
https://support.apple.com/kb/HT214085
https://support.apple.com/kb/HT214088