Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-72pc-mw67-6f3f

Опубликовано: 29 апр. 2025
Источник: github
Github: Не прошло ревью
CVSS3: 6.2

Описание

An access issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An unauthenticated user on the same network as a signed-in Mac could send it AirPlay commands without pairing.

An access issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An unauthenticated user on the same network as a signed-in Mac could send it AirPlay commands without pairing.

Ссылки

EPSS

Процентиль: 29%
0.00105
Низкий

6.2 Medium

CVSS3

CVE ID

CVE-2025-24271

Дефекты

CWE-306
CWE-862

Связанные уязвимости

nvd логотип

CVE-2025-24271

CVSS3: 5.4
nvd
9 месяцев назад

An access issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An unauthenticated user on the same network as a signed-in Mac could send it AirPlay commands without pairing.

fstec логотип

BDU:2025-08205

CVSS3: 5.4
fstec
10 месяцев назад

Уязвимость компонента AirPlay Handler операционных систем macOS, iPadOS, iOS, tvOS, visionOS, позволяющая нарушителю оказать воздействие на конфиденциальность и целостность защищаемой информации

EPSS

Процентиль: 29%
0.00105
Низкий

6.2 Medium

CVSS3

CVE ID

CVE-2025-24271

Дефекты

CWE-306
CWE-862