Описание
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. Photos in the Hidden Photos Album may be viewed without authentication.
Ссылки
- Mailing List
- Vendor Advisory
- Vendor Advisory
- Mailing List
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 17.4 (исключая)Версия до 17.4 (исключая)Версия от 14.0 (включая) до 14.4 (исключая)
Одно из
cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00142
Низкий
2.4 Low
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-287
CWE-863
Связанные уязвимости
CVSS3: 9.1
github
почти 2 года назад
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. Photos in the Hidden Photos Album may be viewed without authentication.
EPSS
Процентиль: 35%
0.00142
Низкий
2.4 Low
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-287
CWE-863