OS X update for Shortcuts (CVE-2024-40844)

OS X update for Shortcuts (CVE-2024-40844)

Severity

5

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:N)

Published

09/17/2024

Created

11/01/2024

Added

10/31/2024

Modified

01/28/2025

Description

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in iOS 17.7 and iPadOS 17.7, macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to observe data displayed to the user by Shortcuts.

Solution(s)

• apple-osx-upgrade-13_7
• apple-osx-upgrade-14_7
• apple-osx-upgrade-15

References

• https://attackerkb.com/topics/cve-2024-40844
• CVE - 2024-40844
• https://support.apple.com/en-us/121234
• https://support.apple.com/en-us/121238
• https://support.apple.com/en-us/121247