CVE-2024-23204
CVSS Score
7.5
EPSS Score
0.0%
EPSS Percentile
0th
The issue was addressed with additional permissions checks. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.3 and iPadOS 17.3, macOS Monterey 12.7.4, macOS Sonoma 14.3, macOS Ventura 13.6.5, watchOS 10.3. A shortcut may be able to use sensitive data with certain actions without prompting the user.
| Vendor | apple |
| Product | ios and ipados |
| Ecosystems | |
| Industries | Technology |
| Published | Jan 23, 2024 |
| Last Updated | Apr 2, 2026 |
Stay Ahead of the Next One
Get instant alerts for apple ios and ipados
Be the first to know when new high vulnerabilities affecting apple ios and ipados are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Apple / iOS and iPadOS
0 < 16.7.6 0 < 17.3
Apple / macOS
0 < 12.7.4 0 < 13.6.5 0 < 14.3
Apple / watchOS
0 < 10.3
References
support.apple.com: https://support.apple.com/en-us/120304 support.apple.com: https://support.apple.com/en-us/120306 support.apple.com: https://support.apple.com/en-us/120309 support.apple.com: https://support.apple.com/en-us/120880 support.apple.com: https://support.apple.com/en-us/120884 support.apple.com: https://support.apple.com/en-us/120886 support.apple.com: https://support.apple.com/en-us/HT214059 support.apple.com: https://support.apple.com/en-us/HT214060 support.apple.com: https://support.apple.com/en-us/HT214061 seclists.org: http://seclists.org/fulldisclosure/2024/Jan/33 seclists.org: http://seclists.org/fulldisclosure/2024/Jan/36 seclists.org: http://seclists.org/fulldisclosure/2024/Jan/39 support.apple.com: https://support.apple.com/kb/HT214082 support.apple.com: https://support.apple.com/kb/HT214083 support.apple.com: https://support.apple.com/kb/HT214085 seclists.org: http://seclists.org/fulldisclosure/2024/Mar/22 seclists.org: http://seclists.org/fulldisclosure/2024/Mar/23 support.apple.com: https://support.apple.com/kb/HT214061