CVE-2023-40401

Description

The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura 13.6.1. An attacker may be able to access passkeys without authentication.

References

https://support.apple.com/kb/HT213985

https://support.apple.com/kb/HT213940

https://support.apple.com/kb/HT213938

https://support.apple.com/kb/HT213927

https://support.apple.com/en-us/HT213985

http://seclists.org/fulldisclosure/2023/Oct/26

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3