PT-2023-5815 · Apple · Ipados+5
Sergii Kryvoblotskyi
·
Published
2023-05-18
·
Updated
2024-12-12
·
CVE-2023-34352
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
macOS Ventura versions prior to 13.4
tvOS versions prior to 16.5
iOS versions prior to 16.5
iPadOS versions prior to 16.5
watchOS versions prior to 9.5
Description
A permissions issue was addressed with improved redaction of sensitive information. This issue may allow an attacker to leak user account emails. The vulnerability is related to errors in using standard permissions in the Accounts component of the operating systems.
Recommendations
For macOS Ventura versions prior to 13.4, update to macOS Ventura 13.4 to fix the issue.
For tvOS versions prior to 16.5, update to tvOS 16.5 to fix the issue.
For iOS versions prior to 16.5, update to iOS 16.5 to fix the issue.
For iPadOS versions prior to 16.5, update to iPadOS 16.5 to fix the issue.
For watchOS versions prior to 9.5, update to watchOS 9.5 to fix the issue.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos
Ios
Ipados
Macos Ventura
Tvos
Watchos