exploitDog

CVE-2023-40529

Опубликовано: 10 янв. 2024

Источник: nvd

CVSS3: 2.4

EPSS Низкий

Описание

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 17 and iPadOS 17. A person with physical access to a device may be able to use VoiceOver to access private calendar information.

Ссылки

https://support.apple.com/en-us/HT213938
Release Notes
Vendor Advisory
https://support.apple.com/en-us/HT213938
Release Notes
Vendor Advisory
https://support.apple.com/kb/HT213938

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*

Версия до 17.0 (исключая)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 17.0 (исключая)

EPSS

Процентиль: 32%

0.00125

Низкий

2.4 Low

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-fc3m-xrgg-2fxh

CVSS3: 2.4

github

около 2 лет назад

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 17 and iPadOS 17. A person with physical access to a device may be able to use VoiceOver to access private calendar information.

EPSS

Процентиль: 32%

0.00125

Низкий

2.4 Low

CVSS3

Дефекты

NVD-CWE-noinfo