CVE-2024-40594

Description

The OpenAI ChatGPT app before 2024-07-05 for macOS opts out of the sandbox, and stores conversations in cleartext in a location accessible to other apps.

PUBLISHED Reserved 2024-07-06 | Published 2024-07-06 | Updated 2024-11-04 | Assigner mitre

References

arstechnica.com/...-was-storing-conversations-as-plain-text/

www.theverge.com/...chatgpt-mac-app-conversations-plain-text

arstechnica.com/...-was-storing-conversations-as-plain-text/

www.theverge.com/...chatgpt-mac-app-conversations-plain-text

cve.org (CVE-2024-40594)

nvd.nist.gov (CVE-2024-40594)

Download JSON