Описание
The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura 13.6.1. An attacker may be able to access passkeys without authentication.
Ссылки
- Mailing ListThird Party Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Mailing ListThird Party Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 13.0 (включая) до 13.6.1 (исключая)
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 31%
0.00117
Низкий
7.5 High
CVSS3
Дефекты
CWE-306
Связанные уязвимости
CVSS3: 7.5
github
больше 2 лет назад
The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura 13.6.1. An attacker may be able to access passkeys without authentication.
EPSS
Процентиль: 31%
0.00117
Низкий
7.5 High
CVSS3
Дефекты
CWE-306