Login Sign Up

CVE-2024-40835

5.5 MEDIUM

📋 TL;DR

This CVE describes a logic flaw in Apple's Shortcuts automation system that allows shortcuts to access sensitive user data without proper user consent prompts. The vulnerability affects multiple Apple operating systems including iOS, iPadOS, macOS, and watchOS. Attackers could potentially create malicious shortcuts that access personal data like contacts, photos, or location information.

💻 Affected Systems

Products:
  • iOS
  • iPadOS
  • macOS
  • watchOS
Versions: Versions prior to iOS 16.7.9, iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6, iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6
Operating Systems: iOS, iPadOS, macOS, watchOS
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all devices running vulnerable versions with Shortcuts functionality enabled. Shortcuts is enabled by default on supported devices.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Watchos by Apple

View all CVEs affecting Watchos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Malicious shortcuts could exfiltrate sensitive personal data including contacts, photos, location history, health data, or authentication tokens without user knowledge or consent.

🟠

Likely Case

Attackers could create shortcuts that access limited sensitive data through social engineering or by tricking users into installing malicious shortcuts from untrusted sources.

🟢

If Mitigated

With proper user education about only installing trusted shortcuts and keeping systems updated, the risk is significantly reduced to minimal data exposure.

🌐 Internet-Facing: LOW - Exploitation requires user interaction to install or run malicious shortcuts, not directly internet-exploitable.
🏢 Internal Only: MEDIUM - Internal threats could create and distribute malicious shortcuts within an organization, potentially accessing sensitive corporate data on managed devices.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires user interaction to install or run malicious shortcuts. No public exploit code has been identified in the provided references.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: iOS 16.7.9, iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6, iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6

Vendor Advisory: https://support.apple.com/en-us/HT214108

Restart Required: Yes

Instructions:

1. Open Settings app. 2. Go to General > Software Update. 3. Download and install the latest available update for your device. 4. Restart device when prompted.

🔧 Temporary Workarounds

Disable Shortcuts from Untrusted Sources

all

Prevent installation of shortcuts from untrusted sources to reduce attack surface.

Settings > Shortcuts > Allow Untrusted Shortcuts (toggle OFF)

Review and Remove Suspicious Shortcuts

all

Audit existing shortcuts and remove any from unknown or untrusted sources.

Open Shortcuts app > My Shortcuts > Review each shortcut > Delete suspicious ones

🧯 If You Can't Patch

  • Implement Mobile Device Management (MDM) policies to restrict shortcut installation from untrusted sources
  • Educate users about the risks of installing shortcuts from unknown sources and implement security awareness training

🔍 How to Verify

Check if Vulnerable:

Check device version in Settings > General > About > Software Version. If version is below patched versions listed, device is vulnerable.

Check Version:

Settings > General > About > Software Version (iOS/iPadOS) or About This Mac > macOS Version (macOS)

Verify Fix Applied:

Verify device is running patched version: iOS/iPadOS 16.7.9+, iOS/iPadOS 17.6+, macOS Ventura 13.6.8+, macOS Monterey 12.7.6+, watchOS 10.6+, macOS Sonoma 14.6+

📡 Detection & Monitoring

Log Indicators:

  • Unusual shortcut creation/modification timestamps
  • Shortcuts accessing sensitive data APIs without user prompts
  • Shortcuts from unknown sources being installed

Network Indicators:

  • Unexpected outbound connections from Shortcuts app to external domains
  • Data exfiltration patterns from device

SIEM Query:

device.os.name:"iOS" OR device.os.name:"macOS" AND event.action:"shortcut_executed" AND event.outcome:"success" AND NOT user.interaction:"true"

📊 Metadata

CVE ID: CVE-2024-40835
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Published: July 29, 2024
Last Updated: November 4, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON