Lucene search
HistoryJul 29, 2024 - 11:15 p.m.
CVE-2024-40786
ios
ipados
macos
state management
user information exposure
cve-2024-40786
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
29.6%
This issue was addressed through improved state management. This issue is fixed in iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8. An attacker may be able to view sensitive user information.
Affected configurations
Node
appleipadosRange<16.7.9
ORappleipadosRange17.0–17.6
Node
appleiphone_osRange<16.7.9
ORappleiphone_osRange17.0–17.6
Node
applemacosRange<13.6.8
Related
cve
cve
CVE-2024-40786
2024-07-29 23:15:12
vulnrichment
vulnrichment
CVE-2024-40786
2024-07-29 22:16:51
cvelist
cvelist
CVE-2024-40786
2024-07-29 22:16:51
apple
apple
About the security content of iOS 16.7.9 and iPadOS 16.7.9
2024-07-29 00:00:00
About the security content of iOS 17.6 and iPadOS 17.6
2024-07-29 00:00:00
About the security content of macOS Ventura 13.6.8
2024-07-29 00:00:00
openvas
openvas
Apple MacOSX Security Update (HT214120)
2024-07-30 00:00:00
nessus
nessus
macOS 13.x < 13.6.8 Multiple Vulnerabilities (120912)
2024-09-13 00:00:00
macOS 13.x < 13.6.8 Multiple Vulnerabilities (HT214120)
2024-07-29 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
29.6%
Related for NVD:CVE-2024-40786