Main Vulnerability Database Vulnerabilities #VU94916

#VU94916 Security features bypass in macOS - CVE-2024-40829

Published: July 30, 2024

Vulnerability identifier: #VU94916

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2024-40829

CWE-ID: CWE-254

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
macOS

Software vendor:
Apple Inc.

Description

The vulnerability allows an attacker to gain access to sensitive information.

The vulnerability exists due to improperly imposed security restrictions in VoiceOver. An attacker with physical access to the system can view restricted content from the lock screen.

Remediation

Install updates from vendor's website.

External links

https://support.apple.com/en-us/HT214120

#VU94916 Security features bypass in macOS - CVE-2024-40829

Description

Remediation

External links

Please verify you're human