CVE-2024-40865

MEDIUM | Platform: visionOS | Changelog

CVE Details

Description

The issue was addressed by suspending Persona when the virtual keyboard is active. This issue is fixed in visionOS 1.3. Inputs to the virtual keyboard may be inferred from Persona.

CVSS 3.1 Score

Metric	Value
Base Score	5.3 (MEDIUM)
Vector	`CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N`

References

Apple Security Advisory
NVD Entry