First published: Mon May 13 2024(Updated: )
A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. A shortcut may output sensitive user data without consent.
Credit: Kirin @Pwnrin Kandjizbleet Kandji KandjiCsaba Fitzl @theevilbit KandjiKirin @Pwnrin Kandjizbleet Kandji KandjiCsaba Fitzl @theevilbit KandjiKirin @Pwnrin Kandjizbleet Kandji KandjiCsaba Fitzl @theevilbit Kandji product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS Sonoma | <14.5 | 14.5 |
Apple watchOS | <10.5 | 10.5 |
Apple iOS | <17.5 | 17.5 |
Apple iPadOS | <17.5 | 17.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)