CVE-2023-40389 | THREATINT

Description

The issue was addressed with improved restriction of data container access. This issue is fixed in macOS Ventura 13.6.5, macOS Monterey 12.7.4. An app may be able to access sensitive user data.

PUBLISHED Reserved 2023-08-14 | Published 2024-06-10 | Updated 2025-02-13 | Assigner apple

Problem types

An app may be able to access sensitive user data

Product status

Any version before 12.7

affected

Any version before 13.6

affected

References

support.apple.com/en-us/HT214083

support.apple.com/en-us/HT214085

support.apple.com/kb/HT214040

support.apple.com/kb/HT214036

support.apple.com/kb/HT214035

support.apple.com/kb/HT214041

cve.org (CVE-2023-40389)

nvd.nist.gov (CVE-2023-40389)

Download JSON