Описание
This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode.
This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2024-27799
- https://support.apple.com/en-us/HT214100
- https://support.apple.com/en-us/HT214105
- https://support.apple.com/en-us/HT214106
- https://support.apple.com/en-us/HT214107
- https://support.apple.com/kb/HT214100
- https://support.apple.com/kb/HT214105
- https://support.apple.com/kb/HT214106
- https://support.apple.com/kb/HT214107
Связанные уязвимости
This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode.
Уязвимость компонента управления устройствами ввода/вывода IOHIDFamily (Input/Output Human Interface Device Family) операционных систем iPadOS, iOS, macOS, позволяющая нарушителю раскрыть защищаемую информацию