CVE-2024-23245 Information

Description

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.4 macOS Monterey 12.7.4 macOS Ventura 13.6.5. Third-party shortcuts may use a legacy action from Automator to send events to apps without user consent.

Reference

https://support.apple.com/en-us/HT214083 https://support.apple.com/en-us/HT214085 https://support.apple.com/en-us/HT214084