CVE-2024-40594

CVSS 3.1 Score 2.3 of 10 (low)

Details

Published Jul 6, 2024
Updated: Jul 8, 2024

Summary

CVE-2024-40594 is a vulnerability affecting the OpenAI ChatGPT app for macOS prior to version 2024-07-05. This issue allows the app to bypass the macOS sandbox, leaving its conversations vulnerable to being accessed by other applications. The app stores chat history in cleartext, increasing the risk of sensitive information being exposed. Users are advised to update their OpenAI ChatGPT app to the latest version to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share