CVE-2024-23230

Medium

5.5/10

Summary

This issue was addressed with improved file handling. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to access sensitive user data.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: NONE

References

Advisory Timeline

Published Mar 08, 2024

CVE-2024-23230

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS