CVE-2024-40836
CVSS Score
7.5
EPSS Score
0.0%
EPSS Percentile
0th
A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, watchOS 10.6. A shortcut may be able to use sensitive data with certain actions without prompting the user.
| Vendor | apple |
| Product | ios and ipados |
| Ecosystems | |
| Industries | Technology |
| Published | Jul 29, 2024 |
| Last Updated | Apr 2, 2026 |
Stay Ahead of the Next One
Get instant alerts for apple ios and ipados
Be the first to know when new high vulnerabilities affecting apple ios and ipados are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Apple / iOS and iPadOS
0 < 16.7.9 0 < 17.6
Apple / macOS
0 < 14.6
Apple / watchOS
0 < 10.6
References
support.apple.com: https://support.apple.com/en-us/120908 support.apple.com: https://support.apple.com/en-us/120909 support.apple.com: https://support.apple.com/en-us/120911 support.apple.com: https://support.apple.com/en-us/120916 support.apple.com: https://support.apple.com/en-us/HT214117 support.apple.com: https://support.apple.com/en-us/HT214116 support.apple.com: https://support.apple.com/en-us/HT214124 support.apple.com: https://support.apple.com/en-us/HT214119 seclists.org: http://seclists.org/fulldisclosure/2024/Jul/16 seclists.org: http://seclists.org/fulldisclosure/2024/Jul/21 seclists.org: http://seclists.org/fulldisclosure/2024/Jul/17 seclists.org: http://seclists.org/fulldisclosure/2024/Jul/18 support.apple.com: https://support.apple.com/kb/HT214124 support.apple.com: https://support.apple.com/kb/HT214119 support.apple.com: https://support.apple.com/kb/HT214117 support.apple.com: https://support.apple.com/kb/HT214116