#AppleShortcuts

Apple Shortcuts Vulnerability Exposes Sensitive Information

by

February 23, 2024 at 09:27AM A high-severity vulnerability, tracked as CVE-2024-23204, in Apple Shortcuts allowed attackers to access sensitive user information and system resources without user prompting. Cybersecurity firm Bitdefender discovered the issue, which bypassed Appleā€™s framework governing access permissions. The vulnerability was addressed with the release of iOS 17.3, iPadOS 17.3, and macOS Sonoma … Read more

Researchers Detail Apple’s Recent Zero-Click Shortcuts Vulnerability

by

February 23, 2024 at 01:09AM A high-severity security flaw in Apple’s Shortcuts app, CVE-2024-23204, was patched on January 22, 2024. The flaw allowed shortcuts to access sensitive data without user consent. Bitdefender researcher discovered the bug, stating it could bypass TCC policies and exfiltrate data to a malicious server. The vulnerability was fixed in iOS … Read more