Details on Apple’s Shortcuts Vulnerability: A Deep Dive into CVE-2024-23204

This report describes CVE-2024-23204, a High-severity vulnerability (CVSS 7.5) in Apple Shortcuts that can be abused to bypass Apple's TCC permission prompts—using the 'Expand URL' action to base64-encode and exfiltrate sensitive data (photos, contacts, files, clipboard) to an attacker-controlled server; affected devices running macOS prior to Sonoma 14.3 and iOS/iPadOS prior to 17.3 are fixed by Apple updates, and users are advised to update and avoid installing shortcuts from untrusted sources.