An access issue was addressed with improved access restrictions. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. An app may be able to access Bluetooth-connected microphones without user permission.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2024/Mar/21 | Mailing List |
http://seclists.org/fulldisclosure/2024/Mar/24 | Mailing List |
http://seclists.org/fulldisclosure/2024/Mar/25 | Mailing List |
https://support.apple.com/en-us/HT214081 | Vendor Advisory |
https://support.apple.com/en-us/HT214084 | Vendor Advisory |
https://support.apple.com/en-us/HT214086 | Vendor Advisory |
https://support.apple.com/en-us/HT214088 | Vendor Advisory |
http://seclists.org/fulldisclosure/2024/Mar/21 | Mailing List |
http://seclists.org/fulldisclosure/2024/Mar/24 | Mailing List |
http://seclists.org/fulldisclosure/2024/Mar/25 | Mailing List |
https://support.apple.com/en-us/HT214081 | Vendor Advisory |
https://support.apple.com/en-us/HT214084 | Vendor Advisory |
https://support.apple.com/en-us/HT214086 | Vendor Advisory |
https://support.apple.com/en-us/HT214088 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
27 Mar 2025, 16:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-863 |
06 Dec 2024, 02:30
Type | Values Removed | Values Added |
---|---|---|
First Time |
Apple
Apple watchos Apple tvos Apple iphone Os Apple macos Apple ipad Os |
|
CPE | cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:* |
|
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
References | () http://seclists.org/fulldisclosure/2024/Mar/21 - Mailing List | |
References | () http://seclists.org/fulldisclosure/2024/Mar/24 - Mailing List | |
References | () http://seclists.org/fulldisclosure/2024/Mar/25 - Mailing List | |
References | () https://support.apple.com/en-us/HT214081 - Vendor Advisory | |
References | () https://support.apple.com/en-us/HT214084 - Vendor Advisory | |
References | () https://support.apple.com/en-us/HT214086 - Vendor Advisory | |
References | () https://support.apple.com/en-us/HT214088 - Vendor Advisory |
21 Nov 2024, 08:57
Type | Values Removed | Values Added |
---|---|---|
References | () http://seclists.org/fulldisclosure/2024/Mar/21 - | |
References | () http://seclists.org/fulldisclosure/2024/Mar/24 - | |
References | () http://seclists.org/fulldisclosure/2024/Mar/25 - | |
References | () https://support.apple.com/en-us/HT214081 - | |
References | () https://support.apple.com/en-us/HT214084 - | |
References | () https://support.apple.com/en-us/HT214086 - | |
References | () https://support.apple.com/en-us/HT214088 - |
13 Mar 2024, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
13 Mar 2024, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
08 Mar 2024, 14:02
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-03-08 02:15
Updated : 2025-03-27 16:15
NVD link : CVE-2024-23250
Mitre link : CVE-2024-23250
CVE.ORG link : CVE-2024-23250
JSON object : View
Products Affected
apple
- macos
- iphone_os
- watchos
- ipad_os
- tvos
CWE