exploitDog

GHSA-38rr-jcx6-prmh

Опубликовано: 01 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.6

Описание

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access may be able to use Siri to access sensitive user data.

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access may be able to use Siri to access sensitive user data.

Ссылки

EPSS

Процентиль: 42%

0.00204

Низкий

6.6 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2025-24198

CVSS3: 6.6

nvd

10 месяцев назад

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access may be able to use Siri to access sensitive user data.

BDU:2025-05545

CVSS3: 6.6

fstec

10 месяцев назад

Уязвимость персонального помощника Siri операционных систем MacOS, iPadOS, iOS, позволяющая нарушителю раскрыть конфиденциальную информацию

EPSS

Процентиль: 42%

0.00204

Низкий

6.6 Medium

CVSS3

CVE ID

Дефекты

CWE-284