Описание
The issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An attacker with physical access can input Game Controller events to apps running on a locked device.
Ссылки
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 13.7.1 (исключая)Версия от 14.0 (включая) до 14.7.1 (исключая)
Одно из
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00089
Низкий
2.4 Low
CVSS3
7.5 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-862
Связанные уязвимости
CVSS3: 2.4
github
больше 1 года назад
The issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An attacker with physical access can input Game Controller events to apps running on a locked device.
EPSS
Процентиль: 25%
0.00089
Низкий
2.4 Low
CVSS3
7.5 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-862