CVE-2024-40795

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://seclists.org/fulldisclosure/2024/Jul/16", "name": "http://seclists.org/fulldisclosure/2024/Jul/16", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/18", "name": "http://seclists.org/fulldisclosure/2024/Jul/18", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/21", "name": "http://seclists.org/fulldisclosure/2024/Jul/21", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/22", "name": "http://seclists.org/fulldisclosure/2024/Jul/22", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "https://support.apple.com/en-us/HT214117", "name": "https://support.apple.com/en-us/HT214117", "tags": ["Release Notes", "Vendor Advisory"], "refsource": ""}, {"url": "https://support.apple.com/en-us/HT214119", "name": "https://support.apple.com/en-us/HT214119", "tags": ["Release Notes", "Vendor Advisory"], "refsource": ""}, {"url": "https://support.apple.com/en-us/HT214122", "name": "https://support.apple.com/en-us/HT214122", "tags": ["Release Notes", "Vendor Advisory"], "refsource": ""}, {"url": "https://support.apple.com/en-us/HT214124", "name": "https://support.apple.com/en-us/HT214124", "tags": ["Release Notes", "Vendor Advisory"], "refsource": ""}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/16", "name": "http://seclists.org/fulldisclosure/2024/Jul/16", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "https://support.apple.com/en-us/HT214124", "name": "https://support.apple.com/en-us/HT214124", "tags": ["Release Notes", "Vendor Advisory"], "refsource": ""}, {"url": "https://support.apple.com/en-us/HT214122", "name": "https://support.apple.com/en-us/HT214122", "tags": ["Release Notes", "Vendor Advisory"], "refsource": ""}, {"url": "https://support.apple.com/en-us/HT214119", "name": "https://support.apple.com/en-us/HT214119", "tags": ["Release Notes", "Vendor Advisory"], "refsource": ""}, {"url": "https://support.apple.com/en-us/HT214117", "name": "https://support.apple.com/en-us/HT214117", "tags": ["Release Notes", "Vendor Advisory"], "refsource": ""}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/22", "name": "http://seclists.org/fulldisclosure/2024/Jul/22", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/21", "name": "http://seclists.org/fulldisclosure/2024/Jul/21", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/18", "name": "http://seclists.org/fulldisclosure/2024/Jul/18", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "This issue was addressed with improved data protection. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, tvOS 17.6. An app may be able to read sensitive location information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-40795", "ASSIGNER": "product-security@apple.com"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.3, "attackVector": "LOCAL", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 1.8}}, "publishedDate": "2024-07-29T23:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "14.6"}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "17.6"}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "17.6"}, {"cpe23Uri": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "10.6"}, {"cpe23Uri": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "17.6"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-03-25T17:15Z"}