CVSS 3.1 Score 3.3 of 10 (low)


Published Sep 6, 2023
Updated: Dec 22, 2023
CWE ID 532


CVE-2023-40392 is a vulnerability that affects macOS Ventura 13.5 and allows an app to read sensitive location information. The issue has been fixed in the mentioned software version. The vulnerability has a risk score of 5 and a base severity of LOW according to the NVD. It requires user interaction to exploit and has a local attack vector, meaning it can only be exploited by an app installed on the device. The impact on confidentiality is low, while integrity is not impacted, and availability is not affected.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-40392 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options