CVE Details: CVE-2023-40394

Description

The issue was addressed with improved validation of environment variables. This issue is fixed in iOS 16.6 and iPadOS 16.6. An app may be able to access sensitive user data.

Published Date: 2024-01-10
Last Modified Date: 2024-01-18
Severity: LOW
CVSS v3 Score: 3.3
CWE ID: NVD-CWE-noinfo
Attack Vector: LOCAL
Attack Complexity: LOW
Privileges Required: NONE
User Interaction: REQUIRED
Scope: UNCHANGED
Confidentiality Impact: LOW
Integrity Impact: NONE
Availability Impact: NONE

Back to CVE List