VDB
CVE-2024-39894
CVE-2024-39894
PUBLISHED
CVSS 8.699999809265137 HIGH
Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.
EPSS 2.95% · 86.7th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
2.95%
86.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Aruba | Aruba AOS-CX <10.13.1090 | |
| Open Source | Open Source OpenSSH <9.8 | |
| Apple | Apple macOS Ventura <13.7 | |
| Aruba | Aruba AOS-CX <10.16.1010 | |
| FreeBSD Project | FreeBSD Project FreeBSD OS <14.1-RELEASE-p7 | |
| Ubuntu | Ubuntu Linux | |
| Juniper | Juniper JUNOS <24.4R1-EVO | |
| FreeBSD Project | FreeBSD Project FreeBSD OS <14.2-STABLE | |
| Xerox | Xerox FreeFlow Print Server v9 for Solaris | |
| Apple | Apple macOS Sonoma <14.7 | |
| Aruba | Aruba AOS-CX <10.10.1160 | |
| Juniper | Juniper JUNOS <24.2R1-S2 | |
| SUSE | SUSE Linux | |
| FreeBSD Project | FreeBSD Project FreeBSD OS <13.4-STABLE | |
| Aruba | Aruba AOS-CX <10.15.1010 | |
| Meinberg | Meinberg LANTIME <V7.08.014 | |
| Juniper | Juniper JUNOS <24.2R2 | |
| Juniper | Juniper JUNOS <24.2R1-S2-EVO | |
| Juniper | Juniper JUNOS <24.2R2-EVO | |
| Apple | Apple macOS Sequoia <15 |
…and 1 more
Exploit Intelligence
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
…and 11 more exploits
Timeline
- Jul 2, 2024 CVE Published
- Jul 3, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Jan 29, 2025 Coalition ESS Score
- Mar 17, 2025 EPSS Score
- Mar 18, 2025 EPSS Score
- Mar 28, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- Apr 8, 2025 Coalition ESS Score
- Apr 15, 2025 EPSS Score
- May 1, 2025 EPSS Score
- May 4, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2154.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2154 advisory
- https://support.apple.com/en-us/121238 advisory
- https://support.apple.com/en-us/121247 advisory
- https://support.apple.com/en-us/121234 advisory
- https://lists.apple.com/archives/security-announce/2024/Sep/msg00009.html advisory
- https://lists.apple.com/archives/security-announce/2024/Sep/msg00001.html advisory
- https://lists.apple.com/archives/security-announce/2024/Sep/msg00008.html advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1514.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1514 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2295273 advisory
- https://seclists.org/oss-sec/2024/q3/20 advisory
- https://ubuntu.com/security/notices/USN-6887-1 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-July/018919.html advisory
- https://www.meinberg.de/german/news/meinberg-security-advisory-mbgsa-2024-04-lantime-firmware-v7-08-014.htm advisory
- https://supportportal.juniper.net/s/article/2025-01-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Multiple-vulnerabilities-resolved-in-OpenSSH advisory
- https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-001-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf advisory
- https://www.freebsd.org/security/advisories/FreeBSD-SA-25:01.openssh.asc advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021369.html advisory
- https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05062en_us&docLocale=en_US advisory