VDB
GCVE-110-NCSC-2024-381
GCVE-110-NCSC-2024-381
Advisory PublishedCVSS 5.5/10
Apple heeft kwetsbaarheden verholpen in MacOS
Weaknesses (CWE)
CWE-122Heap-based Buffer OverflowCWE-377Insecure Temporary FileCWE-200Exposure of Sensitive Information to an Unauthorized ActorCWE-404Improper Resource Shutdown or ReleaseCWE-275-CWE-284Improper Access ControlCWE-942Permissive Cross-domain Policy with Untrusted DomainsCWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')CWE-285Improper AuthorizationCWE-190Integer Overflow or WraparoundCWE-208Observable Timing DiscrepancyCWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-415Double FreeCWE-61UNIX Symbolic Link (Symlink) FollowingCWE-265-
Risk Scores
CVSS 3.1
5.5/10
Medium · CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| apple | macos_sonoma__14.7 | — | — |
| apple | macos_sequoia__15 | — | — |
| apple | macos_ventura__13.7 | — | — |
Aliases
CVE-2023-4504CVE-2023-5841CVE-2024-23237CVE-2024-27795CVE-2024-27858CVE-2024-27860CVE-2024-27861CVE-2024-27869CVE-2024-27875CVE-2024-27876CVE-2024-27880CVE-2024-27886CVE-2024-39894CVE-2024-40770CVE-2024-40791CVE-2024-40797CVE-2024-40801CVE-2024-40814CVE-2024-40825CVE-2024-40826CVE-2024-40831CVE-2024-40837CVE-2024-40838CVE-2024-40841CVE-2024-40842CVE-2024-40843CVE-2024-40844CVE-2024-40845CVE-2024-40846CVE-2024-40847CVE-2024-40848CVE-2024-40850CVE-2024-40856CVE-2024-40857CVE-2024-40859CVE-2024-40860CVE-2024-40861CVE-2024-40866CVE-2024-41957CVE-2024-44125CVE-2024-44128CVE-2024-44129CVE-2024-44130CVE-2024-44131CVE-2024-44132CVE-2024-44133CVE-2024-44134CVE-2024-44135CVE-2024-44146CVE-2024-44148CVE-2024-44149CVE-2024-44151CVE-2024-44152CVE-2024-44153CVE-2024-44154CVE-2024-44158CVE-2024-44160CVE-2024-44161CVE-2024-44163CVE-2024-44164CVE-2024-44165CVE-2024-44166CVE-2024-44167CVE-2024-44168CVE-2024-44169CVE-2024-44170CVE-2024-44176CVE-2024-44177CVE-2024-44178CVE-2024-44181CVE-2024-44182CVE-2024-44183CVE-2024-44184CVE-2024-44186CVE-2024-44187CVE-2024-44188CVE-2024-44189CVE-2024-44190CVE-2024-44191CVE-2024-44198
References
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.