PT-2023-8359 · Apple · Apple Macos
Noah Roskin-Frazee
+1
·
Published
2023-10-25
·
Updated
2023-11-02
·
CVE-2023-40444
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
macOS Sonoma versions prior to 14.1
Description
A permissions issue was addressed with additional restrictions. This issue may allow an app to access user-sensitive data. The vulnerability is related to insufficient access restrictions in the AppSandbox component of the macOS operating system, which could allow an attacker to execute arbitrary commands.
Recommendations
For macOS Sonoma versions prior to 14.1, update to macOS Sonoma 14.1 to resolve the issue. As a temporary workaround, consider restricting access to sensitive user data until the update is applied.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos