CVE-2024-23295
published 2024-03-08CVE-2024-23295: A permissions issue was addressed to help ensure Personas are always protected. This issue is fixed in visionOS 1.1. An unauthenticated user may be able to use…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNIHAN
A permissions issue was addressed to help ensure Personas are always protected. This issue is fixed in visionOS 1.1. An unauthenticated user may be able to use an unprotected Persona.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | visionos | < 1.1 | 1.1 |
| apple | visionos | — | — |
Apple
CVE-2024-23295: visionOS 1.1
vendor_apple·2024-03-07·CVSS 5.5
CVE-2024-23295 [MEDIUM] CVE-2024-23295: visionOS 1.1
Apple Security Update: About the security content of visionOS 1.1
Product: visionOS
Version: 1.1
CVE: CVE-2024-23295
Component: Persona
Impact: An unauthenticated user may be able to use an unprotected Persona
Description: A permissions issue was addressed to help ensure Personas are always protected
GHSA
GHSA-x7v5-rxwv-mpjw: A permissions issue was addressed to help ensure Personas are always protected This issue is fixed in visionOS 1
ghsa_unreviewed·2024-03-08
CVE-2024-23295 [MEDIUM] CWE-276 GHSA-x7v5-rxwv-mpjw: A permissions issue was addressed to help ensure Personas are always protected This issue is fixed in visionOS 1
A permissions issue was addressed to help ensure Personas are always protected This issue is fixed in visionOS 1.1. An unauthenticated user may be able to use an unprotected Persona.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-03-08
Published