Vulnerability Details CVE-2024-40865
The issue was addressed by suspending Persona when the virtual keyboard is active. This issue is fixed in visionOS 1.3. Inputs to the virtual keyboard may be inferred from Persona.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 36.7%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2024-40865
-
cpe:2.3:o:apple:visionos:-
-
cpe:2.3:o:apple:visionos:1.0.2
-
cpe:2.3:o:apple:visionos:1.1
-
cpe:2.3:o:apple:visionos:1.1.1
-
cpe:2.3:o:apple:visionos:1.2