← Back

CVE-2023-32388

nvd nist
Published: Jun 23, 2023Modified: Dec 5, 2024

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Exploitability: 1.8 / Impact: 3.6
Source: NVD

Description

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in watchOS 9.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences.

Affected (8)

Apple
4 products
Ipados
Iphone Os
Macos
Watchos
Configuration A
8 vulnerable
Vulnerable SoftwareAffected Versions
Apple
Ipados
Before 15.7.6
Ipados
From 16.0 to 16.5
Apple
Iphone Os
Before 15.7.6
Iphone Os
From 16.0 to 16.5
Apple
Macos
From 11.0 to 11.7.7
Macos
From 12.0.0 to 12.6.6
Macos
From 13.0 to 13.4
Watchos
Before 9.5

Related CWEs

CWE-281
Improper Preservation of Permissions
The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

References (12)

Source: product-security@apple.com
Source: product-security@apple.com
Release NotesVendor Advisory
Source: product-security@apple.com
Source: product-security@apple.com
Source: product-security@apple.com
Source: product-security@apple.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Release NotesVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.