CVE-2024-23289
LOWDescription
A lock screen issue was addressed with improved state management. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. A person with physical access to a device may be able to use Siri to access private calendar information.
CVSS v3.1 Score
Affected Products
| Vendor | Product |
|---|---|
| apple | ipados |
| apple | ipados |
| apple | iphone_os |
| apple | iphone_os |
| apple | macos |
| apple | watchos |
References
Advisories & Patches
Other References
Frequently Asked Questions
What is CVE-2024-23289? +
How severe is CVE-2024-23289? +
What products are affected by CVE-2024-23289? +
How do I check if I'm vulnerable to CVE-2024-23289? +
Related Vulnerabilities
A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15. An app may …
This issue was addressed with improved validation of file attributes. This issue is fixed in macOS Sequoia 15. An app …
Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer …
An out-of-bounds write issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Safari 18.3.1, …
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.3 and iPadOS …
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.8.5 and iPadOS 15.8.5, …