CVE-2024-40783

Exploited in the Wild

NIST CVSS Scores

CVSS v3.1 Base Score: 5.5 (Medium)

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CISA CVSS Scores

CVSS v3.1 Base Score: 7.1 (High)

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Operating Systems Impacted

macOS Sonoma (prior to 14.6)
macOS Ventura (prior to 13.6.8)
macOS Monterey (prior to 12.7.6)

Additional Resources

NVD CVE-2024-40783
macOS Sonoma 14.6
macOS Ventura 13.6.8
macOS Monterey 12.7.6

Description

CVE-2024-40783 is a security vulnerability in Apple's macOS that could allow a malicious application to bypass Privacy preferences. The issue was addressed by Apple through improved restriction of data container access in macOS Sonoma 14.6, macOS Ventura 13.6.8, and macOS Monterey 12.7.6.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive user data by bypassing Privacy preferences. The severity of this issue has been assessed as follows: