CVE-2023-40425

Name of the Vulnerable Software and Affected Versions macOS versions prior to 12.7.1

Description A privacy issue was addressed with improved private data redaction for log entries. This issue may allow an app with root privileges to access private information. The vulnerability is related to insufficient protection of registration data in the macOS Sandbox component, which could allow an attacker to disclose protected information.

Recommendations For versions prior to 12.7.1, update to macOS Monterey 12.7.1 to resolve the issue. As a temporary workaround, consider restricting access to log entries and private data for apps with root privileges until the update is applied.