The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. An attacker in a privileged network position may be able to inject keystrokes by spoofing a keyboard.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2024/Mar/21 | Mailing List |
https://support.apple.com/en-us/HT214081 | Vendor Advisory |
https://support.apple.com/en-us/HT214084 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apple
Published: 2024-03-08T01:35:27.903Z
Updated: 2024-07-05T17:22:09.857Z
Reserved: 2024-01-12T22:22:21.498Z
Link: CVE-2024-23277
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-03-08T02:15:49.600
Modified: 2024-03-14T20:34:31.303
Link: CVE-2024-23277
JSON object: View
Redhat Information
No data.
CWE