We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-40834



Assignerapple
Reserved2024-07-10
Published2024-07-29
Updated2024-10-30

Description

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to bypass sensitive Shortcuts app settings.

Product status

Any version before 13.6
affected

Any version before 14.6
affected

Any version before 12.7
affected

References

https://support.apple.com/en-us/HT214120

https://support.apple.com/en-us/HT214119

https://support.apple.com/en-us/HT214118

http://seclists.org/fulldisclosure/2024/Jul/20

http://seclists.org/fulldisclosure/2024/Jul/18

http://seclists.org/fulldisclosure/2024/Jul/19

cve.org CVE-2024-40834

nvd.nist.gov CVE-2024-40834

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-40834
Subscribe to our newsletter to learn more about our work.