CVE-2023-24890

Name
CVE-2023-24890
Description
Microsoft OneDrive for iOS Security Feature Bypass Vulnerability
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24890

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:microsoft:onedrive:*:*:*:*:*:iphone_os:*:* onedrive >= 1.0.0 < 14.2.2

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
onedrive 3.17-community 2.4.21-r0 Duncan Bellamy <dunk@denkimushi.com> possibly vulnerable
onedrive 3.18-community 2.4.23-r2 Duncan Bellamy <dunk@denkimushi.com> possibly vulnerable
onedrive 3.19-community 2.4.25-r2 Duncan Bellamy <dunk@denkimushi.com> possibly vulnerable
onedrive 3.20-community 2.4.25-r2 Duncan Bellamy <dunk@denkimushi.com> possibly vulnerable
onedrive edge-community 2.5.2-r0 Duncan Bellamy <dunk@denkimushi.com> possibly vulnerable