{"dataType":"CVE_RECORD","cveMetadata":{"cveId":"CVE-2024-40795","assignerOrgId":"286789f9-fbc2-4510-9f9a-43facdede74c","state":"PUBLISHED","assignerShortName":"apple","dateReserved":"2024-07-10T17:11:04.691Z","datePublished":"2024-07-29T22:17:11.340Z","dateUpdated":"2026-04-02T18:23:40.380Z"},"containers":{"cna":{"problemTypes":[{"descriptions":[{"lang":"en","description":"An app may be able to read sensitive location information"}]}],"affected":[{"vendor":"Apple","product":"iOS and iPadOS","versions":[{"version":"0","status":"affected","lessThan":"17.6","versionType":"custom"}]},{"vendor":"Apple","product":"macOS","versions":[{"version":"0","status":"affected","lessThan":"14.6","versionType":"custom"}]},{"vendor":"Apple","product":"tvOS","versions":[{"version":"0","status":"affected","lessThan":"17.6","versionType":"custom"}]},{"vendor":"Apple","product":"watchOS","versions":[{"version":"0","status":"affected","lessThan":"10.6","versionType":"custom"}]}],"descriptions":[{"lang":"en","value":"This issue was addressed with improved data protection. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, watchOS 10.6. An app may be able to read sensitive location information."}],"references":[{"url":"https://support.apple.com/en-us/120909"},{"url":"https://support.apple.com/en-us/120911"},{"url":"https://support.apple.com/en-us/120914"},{"url":"https://support.apple.com/en-us/120916"}],"providerMetadata":{"orgId":"286789f9-fbc2-4510-9f9a-43facdede74c","shortName":"apple","dateUpdated":"2026-04-02T18:23:40.380Z"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2024-40795","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-07-30T14:47:45.665505Z"}}},{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":3.3,"attackVector":"LOCAL","baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","integrityImpact":"NONE","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"NONE","privilegesRequired":"LOW","confidentialityImpact":"LOW"}}],"problemTypes":[{"descriptions":[{"lang":"en","type":"CWE","description":"CWE-noinfo Not enough information"}]}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-03-25T16:30:46.830Z"}},{"title":"CVE Program Container","references":[{"url":"https://support.apple.com/en-us/HT214117","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214124","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214119","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214122","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Jul/16","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Jul/21","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Jul/22","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Jul/18","tags":["x_transferred"]},{"url":"https://support.apple.com/kb/HT214124"},{"url":"https://support.apple.com/kb/HT214122"},{"url":"https://support.apple.com/kb/HT214119"},{"url":"https://support.apple.com/kb/HT214117"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-04T17:24:15.133Z"}}]},"dataVersion":"5.2"}