VDB

CISA-2024-54498

CISA-2024-54498 PUBLISHED CVSS 8.8 HIGH

Reported by apple · Published December 11, 2024

A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An app may be able to break out of its sandbox.

Risk Scores

CVSS 3.1
8.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersions
ApplemacOSunspecified
ApplemacOSunspecified
ApplemacOSunspecified
ApplemacOSunspecified, unspecified, unspecified

Timeline

  • Dec 11, 2024 CVE Published
  • Dec 21, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›