github - ghsa-9gqc-xrcf-jmcv

ghsa-9gqc-xrcf-jmcv

Vulnerability from github

Published

2023-12-12 03:31

Modified

2023-12-14 15:30

Severity

5.5 (Medium) - CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Details

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.2, iOS 17.2 and iPadOS 17.2, watchOS 10.2, macOS Ventura 13.6.3, iOS 16.7.3 and iPadOS 16.7.3, macOS Monterey 12.7.2. An app may be able to access sensitive user data.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-42919"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-12-12T01:15:12Z",
    "severity": "MODERATE"
  },
  "details": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.2, iOS 17.2 and iPadOS 17.2, watchOS 10.2, macOS Ventura 13.6.3, iOS 16.7.3 and iPadOS 16.7.3, macOS Monterey 12.7.2. An app may be able to access sensitive user data.",
  "id": "GHSA-9gqc-xrcf-jmcv",
  "modified": "2023-12-14T15:30:21Z",
  "published": "2023-12-12T03:31:44Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42919"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT214034"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT214035"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT214036"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT214037"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT214038"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT214041"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2023/Dec/10"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2023/Dec/11"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2023/Dec/13"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2023/Dec/7"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2023/Dec/8"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2023/Dec/9"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

cve-2023-42919

Vulnerability from cvelistv5

Published

2023-12-12 00:27

Modified

2024-08-02 19:30

Severity

Summary

References

URL	Tags
https://support.apple.com/en-us/HT214035
https://support.apple.com/en-us/HT214034
https://support.apple.com/en-us/HT214038
https://support.apple.com/en-us/HT214037
https://support.apple.com/en-us/HT214036
https://support.apple.com/en-us/HT214041
http://seclists.org/fulldisclosure/2023/Dec/9
http://seclists.org/fulldisclosure/2023/Dec/7
http://seclists.org/fulldisclosure/2023/Dec/10
http://seclists.org/fulldisclosure/2023/Dec/8
http://seclists.org/fulldisclosure/2023/Dec/11
http://seclists.org/fulldisclosure/2023/Dec/13

Impacted products

Vendor	Product
Apple	iOS and iPadOS
Apple	iOS and iPadOS
Apple	macOS
Apple	macOS
Apple	macOS
Apple	watchOS

Show details on NVD website