CVE-2024-40833 Information

Description

A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6 iOS 16.7.9 and iPadOS 16.7.9 macOS Monterey 12.7.6 macOS Ventura 13.6.8. A shortcut may be able to use sensitive data with certain actions without prompting the user.

Reference

https://support.apple.com/en-us/HT214116 https://support.apple.com/en-us/HT214120 https://support.apple.com/en-us/HT214119 https://support.apple.com/en-us/HT214118 http://seclists.org/fulldisclosure/2024/Jul/20 http://seclists.org/fulldisclosure/2024/Jul/17 http://seclists.org/fulldisclosure/2024/Jul/18 http://seclists.org/fulldisclosure/2024/Jul/19