CVE-2023-40456
LOW | Platform: iPadOS | Changelog
CVE Details
Description
The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to access edited photos saved to a temporary directory.
CVSS 3.1 Score
| Metric | Value |
|---|---|
| Base Score | 3.3 (LOW) |
| Vector | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N |
References
- Apple Security Advisory
- NVD Entry
- http://seclists.org/fulldisclosure/2023/Oct/10 (Mailing List, Third Party Advisory)
- http://seclists.org/fulldisclosure/2023/Oct/8
- http://seclists.org/fulldisclosure/2023/Oct/9
- https://support.apple.com/en-us/HT213936 (Vendor Advisory)
- https://support.apple.com/en-us/HT213937 (Vendor Advisory)
- https://support.apple.com/en-us/HT213938 (Vendor Advisory)