What is the title of this vulnerability?

The title of this vulnerability is 'Notes. A privacy issue was addressed with improved handling of temporary files.'

What software is affected by this vulnerability?

The macOS Sonoma version up to but not including 14 is affected by this vulnerability.

How can I fix this vulnerability?

To fix this vulnerability, update your macOS Sonoma installation to version 14 or later.

Where can I find more information about this vulnerability?

You can find more information about this vulnerability on Apple's support website: https://support.apple.com/en-us/HT213940

Vulnerability/
CVE-2023-40386

low

3.3

26/9/2023

27/9/2023

24/4/2024

CVE-2023-40386

First published: Tue Sep 26 2023(Updated: )

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14. An app may be able to access Notes attachments.

Credit: Kirin @Pwnrin product-security@apple.com product-security@apple.com

Affected Software	Affected Version	How to fix
	<14	14
Apple macOS	<14.0

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

HT213940

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2023-40384
CVE-2023-32377
CVE-2023-38615
CVE-2023-42929
CVE-2023-40448
CVE-2023-42872
CVE-2023-40432
CVE-2023-42871
CVE-2023-40399
CVE-2023-40410
CVE-2023-38612
CVE-2023-32361
CVE-2023-35984
CVE-2023-40402
CVE-2023-40426
CVE-2023-42876
CVE-2023-41065
CVE-2023-29497
CVE-2023-38596
CVE-2023-40406
CVE-2023-40420
CVE-2023-40528
CVE-2023-40438
CVE-2023-41994
CVE-2023-40407
CVE-2023-32396
CVE-2023-42933
CVE-2023-41980
CVE-2023-40411
CVE-2023-40395
CVE-2023-40391
CVE-2023-40441
CVE-2023-23495
CVE-2023-40434
CVE-2023-38586
CVE-2023-40436
CVE-2023-41995
CVE-2023-42870
CVE-2023-41981
CVE-2023-41984
CVE-2023-40429
CVE-2023-41060
CVE-2023-41067
CVE-2023-40400
CVE-2023-40454
CVE-2023-41073
CVE-2023-40403
CVE-2023-40427
CVE-2023-32421
CVE-2023-42826
CVE-2023-41986
CVE-2023-40455
CVE-2023-40386
CVE-2023-38408
CVE-2023-40401
CVE-2023-40393
CVE-2023-42934
CVE-2023-37448
CVE-2023-38607
CVE-2023-41987
CVE-2023-41063
CVE-2023-40422
CVE-2023-39233
CVE-2023-40388
CVE-2023-35990
CVE-2023-40417
CVE-2023-40452
CVE-2023-40430
CVE-2023-41996
CVE-2023-41078
CVE-2023-41070
CVE-2023-40541
CVE-2023-41079
CVE-2023-40443
CVE-2023-41968
CVE-2023-40450
CVE-2023-40424
CVE-2023-39434
CVE-2023-40414
CVE-2023-41074
CVE-2023-35074
CVE-2023-41993
CVE-2023-32359
CVE-2023-40385
CVE-2023-42833
CVE-2023-38610
CVE-2023-41066
CVE-2023-41979

Frequently Asked Questions

What is the CVE ID?
The CVE ID is CVE-2023-40386.
What is the title of this vulnerability?
The title of this vulnerability is 'Notes. A privacy issue was addressed with improved handling of temporary files.'
What software is affected by this vulnerability?
The macOS Sonoma version up to but not including 14 is affected by this vulnerability.
How can I fix this vulnerability?
To fix this vulnerability, update your macOS Sonoma installation to version 14 or later.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability on Apple's support website: https://support.apple.com/en-us/HT213940

collector/nvd-index
collector/nvd-api
agent/type
agent/last-modified-date
agent/first-publish-date
agent/softwarecombine
agent/references
agent/severity
agent/author
agent/tags
agent/event
agent/description
collector/apple-support
source/Apple
agent/software-canonical-lookup
vendor/apple
canonical/apple macos
canonical/apple macos sonoma