CVE-2024-40826
Description
An unencrypted document may be written to a temporary file when using print preview, potentially leaking sensitive user information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An unencrypted document may be written to a temporary file when using print preview, potentially leaking sensitive user information.
Vulnerability
A privacy issue exists in the handling of files during print preview. When a user invokes print preview, an unencrypted document may be written to a temporary file. This affects versions prior to iOS 18, iPadOS 18, and macOS Sequoia 15. The issue is addressed with improved checks in the fixed releases [1][2].
Exploitation
An attacker would need access to the temporary file location, which could be achieved through a malicious app with file system access or by being on the same system. The sequence involves the user printing a document with print preview, causing the unencrypted content to be written to a temporary file; an app with read access to that temporary directory can then retrieve the document [1][2].
Impact
Successful exploitation allows an app to leak sensitive user information from the unencrypted temporary file. The impact is information disclosure, potentially exposing the contents of the printed document [1][2].
Mitigation
The vulnerability is fixed in iOS 18, iPadOS 18, and macOS Sequoia 15, released on September 16, 2024. Users should update to these versions. No workarounds are documented, and the issue is not listed on the CISA Known Exploited Vulnerabilities catalog [1][2].
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
5- Range: <18
- Range: <15
- Range: <18
- Range: 0
- Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.