What is CVE-2023-40402?

CVE-2023-40402 is a permissions issue in Bluetooth that has been addressed with additional restrictions.

Which software is affected by CVE-2023-40402?

The affected software is macOS Sonoma version up to but excluding 14.

How was CVE-2023-40402 addressed?

CVE-2023-40402 was addressed by implementing additional restrictions.

Who is the vendor of the affected software?

The vendor of the affected software is Apple.

Where can I find more information about CVE-2023-40402?

You can find more information about CVE-2023-40402 at the following reference link: https://support.apple.com/en-us/HT213940

Vulnerability/
CVE-2023-40402

medium

5.5

26/9/2023

24/9/2024

CVE-2023-40402

First published: Tue Sep 26 2023(Updated: )

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14. An app may be able to access sensitive user data.

Credit: Yiğit Can YILMAZ @yilmazcanyigit product-security@apple.com product-security@apple.com

Affected Software	Affected Version	How to fix
	<14	14
Apple macOS	<14.0

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

HT213940

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2023-40384
CVE-2023-32377
CVE-2023-38615
CVE-2023-40448
CVE-2023-40432
CVE-2023-42871
CVE-2023-40399
CVE-2023-40410
CVE-2023-42872
CVE-2023-42929
CVE-2023-42925
CVE-2023-38612
CVE-2023-32361
CVE-2023-35984
CVE-2023-40402
CVE-2023-40426
CVE-2023-42876
CVE-2023-41065
CVE-2023-29497
CVE-2023-38596
CVE-2023-42943
CVE-2023-40406
CVE-2023-40420
CVE-2023-40528
CVE-2023-40438
CVE-2023-41994
CVE-2023-40407
CVE-2023-32396
CVE-2023-42933
CVE-2023-41980
CVE-2023-40411
CVE-2023-40395
CVE-2023-40391
CVE-2023-40441
CVE-2023-42959
CVE-2023-23495
CVE-2023-40434
CVE-2023-38586
CVE-2023-40436
CVE-2023-40396
CVE-2023-41995
CVE-2023-42870
CVE-2023-41981
CVE-2023-41984
CVE-2023-40429
CVE-2023-41060
CVE-2023-41067
CVE-2023-40400
CVE-2023-40454
CVE-2023-41073
CVE-2023-40403
CVE-2023-40427
CVE-2023-42957
CVE-2023-32421
CVE-2023-42826
CVE-2023-42918
CVE-2023-41986
CVE-2023-40455
CVE-2023-40386
CVE-2023-38408
CVE-2023-40401
CVE-2023-40393
CVE-2023-42949
CVE-2023-42934
CVE-2023-37448
CVE-2023-38607
CVE-2023-41987
CVE-2023-41063
CVE-2023-40422
CVE-2023-39233
CVE-2023-40388
CVE-2023-35990
CVE-2023-40417
CVE-2023-40452
CVE-2023-40430
CVE-2023-41996
CVE-2023-41078
CVE-2023-41070
CVE-2023-40541
CVE-2023-41079
CVE-2023-40443
CVE-2023-41968
CVE-2023-40450
CVE-2023-42948
CVE-2023-40424
CVE-2023-39434
CVE-2023-40414
CVE-2023-41074
CVE-2023-35074
CVE-2023-41993
CVE-2023-32359
CVE-2023-40385
CVE-2023-42833
CVE-2023-38610
CVE-2023-41066
CVE-2023-41979

Frequently Asked Questions

What is CVE-2023-40402?
CVE-2023-40402 is a permissions issue in Bluetooth that has been addressed with additional restrictions.
Which software is affected by CVE-2023-40402?
The affected software is macOS Sonoma version up to but excluding 14.
How was CVE-2023-40402 addressed?
CVE-2023-40402 was addressed by implementing additional restrictions.
Who is the vendor of the affected software?
The vendor of the affected software is Apple.
Where can I find more information about CVE-2023-40402?
You can find more information about CVE-2023-40402 at the following reference link: https://support.apple.com/en-us/HT213940

collector/nvd-index
collector/nvd-api
agent/type
agent/first-publish-date
agent/softwarecombine
agent/severity
agent/author
agent/event
agent/description
agent/references
collector/apple-support
source/Apple
agent/software-canonical-lookup
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/apple
canonical/apple macos
canonical/apple macos sonoma