Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-27805

June 10, 2024, 9:15 p.m.

Tags

product-security@apple.com
2024-06-10
CVE-2024-27805

Product(s) Impacted

macOS Monterey

  • 12.7.5

macOS Ventura

  • 13.6.7

macOS Sonoma

  • 14.5

tvOS

  • 17.5

watchOS

  • 10.5

iOS

  • 16.7.8
  • 17.5

iPadOS

  • 16.7.8
  • 17.5

Description

An issue was addressed with improved validation of environment variables. This issue is fixed in macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8, tvOS 17.5, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. An app may be able to access sensitive user data.

Weaknesses

Date

Published: June 10, 2024, 9:15 p.m.

Last Modified: June 10, 2024, 9:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

product-security@apple.com

References

https://support.apple.com/ product-security@apple.com
https://support.apple.com/ product-security@apple.com
https://support.apple.com/ product-security@apple.com
https://support.apple.com/ product-security@apple.com
https://support.apple.com/ product-security@apple.com
https://support.apple.com/ product-security@apple.com
https://support.apple.com/ product-security@apple.com