CVE-2023-40438

Summary

An issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14, iOS 16.7 and iPadOS 16.7. An app may be able to access edited photos saved to a temporary directory.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 16.7affected
ApplemacOSunspecified < 14affected

Weaknesses

  • An app may be able to access edited photos saved to a temporary directory

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References