exploitDog

GHSA-jrgv-pmf9-6qg5

Опубликовано: 01 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.

Ссылки

EPSS

Процентиль: 40%

0.00182

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-200

CWE-59

Связанные уязвимости

CVE-2025-24278

CVSS3: 5.5

nvd

10 месяцев назад

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.

EPSS

Процентиль: 40%

0.00182

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-200

CWE-59