What is the severity of CVE-2024-23229?

CVE-2024-23229 has been addressed with improvements and is considered a significant vulnerability impacting sensitive information.

How do I fix CVE-2024-23229?

To fix CVE-2024-23229, update your system to macOS Monterey 12.7.5, macOS Ventura 13.6.5, or macOS Sonoma 14.4.

Which versions of macOS are affected by CVE-2024-23229?

CVE-2024-23229 affects macOS versions before 12.7.5, 13.6.5, and 14.4.

What type of issue is CVE-2024-23229?

CVE-2024-23229 is an information disclosure vulnerability that may allow malicious applications to access sensitive data.

Who is the vendor for CVE-2024-23229?

The vendor for CVE-2024-23229 is Apple.

Vulnerability/
CVE-2024-23229

medium

5.5

CWE

922 20

7/3/2024

13/5/2024

13/2/2025

CVE-2024-23229: Input Validation

First published: Thu Mar 07 2024(Updated: )

Accessibility. A privacy issue was addressed with improved private data redaction for log entries.

Credit: Joshua Jewett @JoshJewett33 product-security@apple.com an anonymous researcher Kirin @Pwnrin 小来来 @Smi1eSEC pattern-f @pattern_F_ Ant Security LightAmir Bazine CrowdStrike Counter Adversary OperationsKarsten König CrowdStrike Counter Adversary OperationsYann GASCUEL Alter SolutionsMickey Jin @patch1t Pr BarPr Hebrew University EP LFY @secsys Fudan UniversityDaniel Zajork Joshua Zajork Meysam Firouzi @R00tkitsmm Trend Micro Zero Day InitiativePedro Tôrres @t0rr3sp3dr0 CVE-2024-27806 ajajfxhj m4yfly with TianGong Team Legendsec at Qi'anxin GroupGuilherme Rambo Best Buddy AppsCsaba Fitzl @theevilbit OffSecCVE-2024-23205 CVE-2022-48554 Junsung Lee Trend Micro Zero Day InitiativeZhenjiang Zhao pangu teamQianxin CrowdStrike Counter Adversary Operations CrowdStrike Counter Adversary OperationsDohyun Lee @l33d0hyun Lyutoon Mr.R Murray Mike CVE-2024-23235 Xinru Chi Pangu LabCVE-2024-23225 koocola ali yabuz @08Tc3wBB JamfCVE-2024-23283 CVE-2023-48795 CVE-2023-51384 CVE-2023-51385 Bohdan Stasiuk @Bohdan_Stasiuk Harsh Tyagi Wojciech Regula SecuRingCVE-2024-23296 Lyra Rebane (rebane2001) Matej Rabzelj CVE-2024-23238 Yiğit Can YILMAZ @yilmazcanyigit luckyu @uuulucky K宝 Fudan UniversityLewis Hardy Bistrit Dahal CVE-2024-23241 CVE-2024-23242 Matthew Loewen Deutsche Telekom Security GmbH sponsored by Bundesamt für Sicherheit in der Informationstechnik anbu1024 SecANTPwn2car James Lee @Windowsrcer Johan Carlsson (joaxcar) Georg Felber Marco Squarcina Marc Newlin SkySafeBrian McNulty Stephan Casas CVE-2024-23291 Clemens Lang Koh M. Nakagawa FFRI Security IncMeng Zhang (鲸落) NorthSeaJubaer Alnazi @h33tjubaer Csaba Fitzl @theevilbit Offensive Security

Affected Software	Affected Version	How to fix
Apple macOS	<14.4	14.4
Apple iOS and macOS	>=12.0<12.7.5
Apple iOS and macOS	>=13.0<13.6.5
Apple iOS and macOS	>=14.0<14.4
macOS	<12.7.5	12.7.5
macOS Ventura	<13.6.5	13.6.5

Never miss a vulnerability like this again

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2024-23291
CVE-2024-23276
CVE-2024-23227
CVE-2024-27886
CVE-2024-23233
CVE-2024-23269
CVE-2024-23288
CVE-2024-23277
CVE-2024-23247
CVE-2024-23248
CVE-2024-23249
CVE-2024-23250
CVE-2024-23299
CVE-2024-23244
CVE-2024-23205
CVE-2022-48554
CVE-2024-23229
CVE-2024-27789
CVE-2024-23253
CVE-2024-23270
CVE-2024-23257
CVE-2024-23258
CVE-2024-23286
CVE-2024-23234
CVE-2024-23266
CVE-2024-23235
CVE-2024-23265
CVE-2024-23225
CVE-2024-27853
CVE-2024-23278
CVE-2024-0258
CVE-2024-23279
CVE-2024-23287
CVE-2024-23264
CVE-2024-23285
CVE-2024-27809
CVE-2024-23283
CVE-2024-27887
CVE-2023-48795
CVE-2023-51384
CVE-2023-51385
CVE-2022-42816
CVE-2024-23216
CVE-2024-23267
CVE-2024-23268
CVE-2024-23274
CVE-2023-42853
CVE-2024-23275
CVE-2024-27888
CVE-2024-23255
CVE-2024-23294
CVE-2024-23296
CVE-2024-23259
CVE-2024-23273
CVE-2024-23238
CVE-2024-23239
CVE-2024-23290
CVE-2024-23232
CVE-2024-23231
CVE-2024-23230
CVE-2024-23245
CVE-2024-23292
CVE-2024-23289
CVE-2024-23293
CVE-2024-23241
CVE-2024-23272
CVE-2024-23242
CVE-2024-23281
CVE-2024-27792
CVE-2024-23261
CVE-2024-23260
CVE-2024-23246
CVE-2024-23226
CVE-2024-23254
CVE-2024-23263
CVE-2024-23280
CVE-2024-23284
CVE-2024-54658
CVE-2024-27859
CVE-2024-40771
CVE-2024-27805
CVE-2024-27817
CVE-2024-27831
CVE-2024-27798
CVE-2024-27799
CVE-2024-27840
CVE-2024-27823
CVE-2024-27810
CVE-2024-27800
CVE-2024-27802
CVE-2024-27885
CVE-2024-27824
CVE-2024-27843
CVE-2024-27806
CVE-2024-27847
CVE-2024-27796
CVE-2024-23218
CVE-2024-23201
CVE-2023-28826
CVE-2024-23203
CVE-2024-23204
CVE-2024-23217
CVE-2023-40389

Frequently Asked Questions

What is the severity of CVE-2024-23229?
CVE-2024-23229 has been addressed with improvements and is considered a significant vulnerability impacting sensitive information.
How do I fix CVE-2024-23229?
To fix CVE-2024-23229, update your system to macOS Monterey 12.7.5, macOS Ventura 13.6.5, or macOS Sonoma 14.4.
Which versions of macOS are affected by CVE-2024-23229?
CVE-2024-23229 affects macOS versions before 12.7.5, 13.6.5, and 14.4.
What type of issue is CVE-2024-23229?
CVE-2024-23229 is an information disclosure vulnerability that may allow malicious applications to access sensitive data.
Who is the vendor for CVE-2024-23229?
The vendor for CVE-2024-23229 is Apple.

agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/severity
agent/trending
agent/source
collector/apple-support
source/Apple
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/event
agent/weakness
agent/references
agent/description
alias/CVE-2024-23248
alias/CVE-2024-23249
alias/CVE-2024-23250
alias/CVE-2024-23299
alias/CVE-2024-23244
alias/CVE-2024-23205
alias/CVE-2022-48554
alias/CVE-2024-23229
alias/CVE-2024-27789
alias/CVE-2024-23253
alias/CVE-2024-23270
alias/CVE-2024-23257
alias/CVE-2024-23258
alias/CVE-2024-23286
alias/CVE-2024-23234
alias/CVE-2024-23266
alias/CVE-2024-23235
alias/CVE-2024-23265
alias/CVE-2024-23225
alias/CVE-2024-27853
alias/CVE-2024-23278
alias/CVE-2024-0258
alias/CVE-2024-23279
alias/CVE-2024-23287
alias/CVE-2024-23264
alias/CVE-2024-23285
alias/CVE-2024-27809
alias/CVE-2024-23283
alias/CVE-2024-27887
alias/CVE-2023-48795
alias/CVE-2023-51384
alias/CVE-2023-51385
alias/CVE-2022-42816
alias/CVE-2024-23216
alias/CVE-2024-23267
alias/CVE-2024-23268
alias/CVE-2024-23274
alias/CVE-2023-42853
alias/CVE-2024-23275
alias/CVE-2024-27888
alias/CVE-2024-23255
alias/CVE-2024-23294
alias/CVE-2024-23296
alias/CVE-2024-23259
alias/CVE-2024-23273
alias/CVE-2024-23238
alias/CVE-2024-23239
alias/CVE-2024-23290
alias/CVE-2024-23232
alias/CVE-2024-23231
alias/CVE-2024-23230
alias/CVE-2024-23245
alias/CVE-2024-23292
alias/CVE-2024-23289
alias/CVE-2024-23293
alias/CVE-2024-23241
alias/CVE-2024-23272
alias/CVE-2024-23242
alias/CVE-2024-23281
alias/CVE-2024-27792
alias/CVE-2024-23261
alias/CVE-2024-23260
alias/CVE-2024-23246
alias/CVE-2024-54658
alias/CVE-2024-23226
alias/CVE-2024-27859
alias/CVE-2024-23254
alias/CVE-2024-23263
alias/CVE-2024-23280
alias/CVE-2024-23284
alias/CVE-2024-23277
alias/CVE-2024-23247
alias/CVE-2024-23288
alias/CVE-2024-23227
alias/CVE-2024-27886
alias/CVE-2024-23233
alias/CVE-2024-23269
alias/CVE-2024-23276
agent/author
agent/last-modified-date
collector/nvd-api
source/NVD
agent/tags
agent/softwarecombine
alias/CVE-2024-27831
alias/CVE-2024-27798
alias/CVE-2024-27799
alias/CVE-2024-27840
alias/CVE-2024-27823
alias/CVE-2024-27810
alias/CVE-2024-27800
alias/CVE-2024-27802
alias/CVE-2024-27885
alias/CVE-2024-27824
alias/CVE-2024-27843
alias/CVE-2024-27806
alias/CVE-2024-27847
alias/CVE-2024-27796
alias/CVE-2024-27805
alias/CVE-2024-27817
alias/CVE-2024-23218
alias/CVE-2024-23201
alias/CVE-2023-28826
alias/CVE-2024-23203
alias/CVE-2024-23204
alias/CVE-2024-23217
alias/CVE-2023-40389
vendor/apple
canonical/apple macos
canonical/apple ios and macos
version/apple ios and macos/12.0
version/apple ios and macos/13.0
version/apple ios and macos/14.0
canonical/macos
canonical/macos ventura