Apple Fixes Privacy Issue in macOS Ventura and Later

CVE-2024-44205

5.5MEDIUM

Key Information

Vendor: Apple
Status: Mac OS; iOS And iPad OS
Vendor: CVE Published:; 24 October 2024

Summary

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. A sandboxed app may be able to access sensitive user data in system logs.

Affected Version(s)

macOS < 12.7

macOS < 14.6

iOS and iPadOS < 16.7

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Oct 24, 2024
Vulnerability Reserved.
Aug 20, 2024

Collectors

NVD DatabaseMitre Database