Sensitive Information Exposure in Apple Products
CVE-2024-23210
3.3LOW
Key Information:
- Vendor
Apple
- Vendor
- CVE Published:
- 23 January 2024
What is CVE-2024-23210?
This vulnerability allows apps to potentially access sensitive user information, such as phone numbers, from system logs due to inadequate redaction. This can lead to privacy concerns where unauthorized applications gain insight into personal data. Apple has addressed this issue in the latest updates for all its operating systems including iOS, macOS, watchOS, tvOS, and iPadOS, highlighting the importance of regular updates to safeguard user privacy.
Affected Version(s)
iOS and iPadOS < 17.3
macOS < 14.3
tvOS < 17.3