CVE-2023-40392

LOW

iPadOS < 15.7.8 - Sensitive Location Information Exposure via Log File

Title source: llm
STIX 2.1

Description

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.5. An app may be able to read sensitive location information.

References (5)

Core 5
Core References
Release Notes, Vendor Advisory
https://support.apple.com/en-us/HT213843
Release Notes, Vendor Advisory
https://support.apple.com/kb/HT213841
Release Notes, Vendor Advisory
https://support.apple.com/kb/HT213842
Release Notes, Vendor Advisory
https://support.apple.com/kb/HT213844
Release Notes, Vendor Advisory
https://support.apple.com/kb/HT213845

Scores

CVSS v3 3.3
EPSS 0.0019
EPSS Percentile 9.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Details

CWE
CWE-532
Status published
Products (3)
apple/ipados < 15.7.8
apple/iphone_os < 15.7.8
apple/macos < 11.7.9
Published Sep 06, 2023
Tracked Since Feb 18, 2026