PT-2023-27503 · Apple · Apple Macos
James Duffy
+1
·
Published
2023-09-26
·
Updated
2023-10-12
·
CVE-2023-40541
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
macOS versions prior to 14
Description
This issue concerns a shortcut that may output sensitive user data without consent. The problem was addressed by adding an additional prompt for user consent.
Recommendations
For versions prior to 14, update to macOS Sonoma 14 to resolve the issue. As a temporary workaround, consider restricting the use of shortcuts that may output sensitive user data until the update is applied.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apple Macos