{"vulnerability": "CVE-2024-4083", "sightings": [{"uuid": "d30e3a2e-1002-4718-be08-e1b6ec4aba59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40839", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfsniytqiw2u", "content": "", "creation_timestamp": "2025-01-15T20:53:19.722878Z"}, {"uuid": "10041002-ef9a-4a1b-96c3-a521342d1821", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40839", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113834073046021148", "content": "", "creation_timestamp": "2025-01-15T19:41:49.402537Z"}, {"uuid": "f587fb1b-75a7-42a7-bcd9-5a72a6690e25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40839", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfslg3n4oz2b", "content": "", "creation_timestamp": "2025-01-15T20:15:52.629388Z"}, {"uuid": "5dfd4961-8b1a-4b58-9b78-7f7100000b40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40835", "type": "seen", "source": "https://bsky.app/profile/lizp.bsky.social/post/3lty33vrqss2d", "content": "", "creation_timestamp": "2025-07-15T04:32:33.035949Z"}, {"uuid": "07f78e24-7f86-4271-bb65-c9f199829c80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40836", "type": "seen", "source": "https://bsky.app/profile/lizp.bsky.social/post/3lty33vrqss2d", "content": "", "creation_timestamp": "2025-07-15T04:32:33.134368Z"}, {"uuid": "c30c4083-4688-410c-86c1-3750c08c0e19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40835", "type": "seen", "source": "https://bsky.app/profile/lizp.bsky.social/post/3lty33w7hc22d", "content": "", "creation_timestamp": "2025-07-15T04:32:34.693043Z"}, {"uuid": "8ca56654-be02-4129-8310-2d3ff56f098e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40836", "type": "seen", "source": "https://bsky.app/profile/lizp.bsky.social/post/3lty33w7hc22d", "content": "", "creation_timestamp": "2025-07-15T04:32:34.788793Z"}, {"uuid": "d3b66a53-c27a-485b-a9fc-e2f0f473aced", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40837", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8712", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40837\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.\n\ud83d\udccf Published: 2024-09-16T23:22:44.799Z\n\ud83d\udccf Modified: 2025-03-25T16:10:42.252Z\n\ud83d\udd17 References:\n1. https://support.apple.com/en-us/121238", "creation_timestamp": "2025-03-25T16:25:19.000000Z"}, {"uuid": "ac37eb82-eb8e-47f0-b2b7-186f4ed41ad7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40839", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1840", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40839\n\ud83d\udd39 Description: This issue was addressed through improved state management. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access to an iOS device may be able to view notification contents from the Lock Screen.\n\ud83d\udccf Published: 2025-01-15T19:35:59.036Z\n\ud83d\udccf Modified: 2025-01-15T19:35:59.036Z\n\ud83d\udd17 References:\n1. https://support.apple.com/en-us/120905", "creation_timestamp": "2025-01-15T19:55:09.000000Z"}, {"uuid": "54c9cabe-49c8-4d0f-a702-f7d60d5b6d65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40834", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7573", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40834\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to bypass sensitive Shortcuts app settings.\n\ud83d\udccf Published: 2024-07-29T22:16:59.786Z\n\ud83d\udccf Modified: 2025-03-14T15:37:55.243Z\n\ud83d\udd17 References:\n1. https://support.apple.com/en-us/HT214120\n2. https://support.apple.com/en-us/HT214119\n3. https://support.apple.com/en-us/HT214118\n4. http://seclists.org/fulldisclosure/2024/Jul/20\n5. http://seclists.org/fulldisclosure/2024/Jul/18\n6. http://seclists.org/fulldisclosure/2024/Jul/19", "creation_timestamp": "2025-03-14T15:43:25.000000Z"}, {"uuid": "f813e8c5-0492-4b1f-a099-e4bc49628194", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40839", "type": "seen", "source": "https://t.me/cvedetector/15522", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40839 - Apple iOS Notification Screen Reading Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40839 \nPublished : Jan. 15, 2025, 8:15 p.m. | 25\u00a0minutes ago \nDescription : This issue was addressed through improved state management. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access to an iOS device may be able to view notification contents from the Lock Screen. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-15T21:49:41.000000Z"}, {"uuid": "dcfb24f5-0af4-4afa-8d61-ac8d1ca0bf42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40835", "type": "seen", "source": "https://t.me/cvedetector/1950", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40835 - Apple iOS/ iPadOS/MacOS/WatchOS Data Leaking Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40835 \nPublished : July 29, 2024, 11:15 p.m. | 45\u00a0minutes ago \nDescription : A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6. A shortcut may be able to use sensitive data with certain actions without prompting the user. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-30T02:20:55.000000Z"}, {"uuid": "7aa26663-88c1-4262-a218-36317f9f3c77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40832", "type": "seen", "source": "https://t.me/cvedetector/1949", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40832 - Apple macOS Notification Contact Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40832 \nPublished : July 29, 2024, 11:15 p.m. | 45\u00a0minutes ago \nDescription : The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app may be able to view a contact's phone number in system logs. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-30T02:20:54.000000Z"}, {"uuid": "5487b467-a2ff-4fec-a77f-89ada47a42cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40836", "type": "seen", "source": "https://t.me/cvedetector/1955", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40836 - Apple Shortcuts Sensitive Data Exposure Bug\", \n  \"Content\": \"CVE ID : CVE-2024-40836 \nPublished : July 29, 2024, 11:15 p.m. | 45\u00a0minutes ago \nDescription : A logic issue was addressed with improved checks. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. A shortcut may be able to use sensitive data with certain actions without prompting the user. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-30T02:21:03.000000Z"}, {"uuid": "e8e258ee-b751-4745-804a-17816773203a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40834", "type": "seen", "source": "https://t.me/cvedetector/1952", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40834 - Apple Shortcuts Escalation of Privilege Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40834 \nPublished : July 29, 2024, 11:15 p.m. | 45\u00a0minutes ago \nDescription : This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to bypass sensitive Shortcuts app settings. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-30T02:20:57.000000Z"}, {"uuid": "0814b792-8f3f-4ea6-8dce-85ff527593ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40833", "type": "seen", "source": "https://t.me/cvedetector/1951", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40833 - Apple macOS Ethernet IP Address Logic Checkdataprotection Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-40833 \nPublished : July 29, 2024, 11:15 p.m. | 45\u00a0minutes ago \nDescription : A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to use sensitive data with certain actions without prompting the user. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-30T02:20:56.000000Z"}]}