Home

Description

The OpenAI ChatGPT app before 2024-07-05 for macOS opts out of the sandbox, and stores conversations in cleartext in a location accessible to other apps.

PUBLISHED Reserved 2024-07-06 | Published 2024-07-06 | Updated 2024-11-04 | Assigner mitre




LOW: 2.3CVSS:3.1/AC:L/AV:L/A:N/C:L/I:N/PR:H/S:U/UI:N

References

arstechnica.com/...-was-storing-conversations-as-plain-text/

www.theverge.com/...chatgpt-mac-app-conversations-plain-text

cve.org (CVE-2024-40594)

nvd.nist.gov (CVE-2024-40594)

Download JSON