CVE-2024-27855
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5, macOS Ventura 13.6.7, iOS 17.5 and iPadOS 17.5, iOS 16.7.8 and iPadOS 16.7.8. A shortcut may be able to use sensitive data with certain actions without prompting the user.
| Software | From | Fixed in |
|---|---|---|
| apple / macos | 14.0 | 14.5 |
| apple / iphone_os | 17.0 | 17.5 |
| apple / iphone_os | - | 16.7.8 |
| apple / ipados | 17.0 | 17.5 |
| apple / ipados | - | 16.7.8 |
| apple / macos | - | 13.6.7 |
- https://support.apple.com/en-us/HT214100
- https://support.apple.com/en-us/HT214101
- https://support.apple.com/en-us/HT214106
- https://support.apple.com/en-us/HT214107
- https://support.apple.com/kb/HT214100
- https://support.apple.com/kb/HT214101
- https://support.apple.com/kb/HT214106
- https://support.apple.com/kb/HT214107
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime