CVE-2024-23238

Опубликовано: 08 мар. 2024

Источник: nvd

CVSS3: 3.3

CVSS3: 7.1

EPSS Низкий

Описание

An access issue was addressed with improved access restrictions. This issue is fixed in macOS Sonoma 14.4. An app may be able to edit NVRAM variables.

Ссылки

http://seclists.org/fulldisclosure/2024/Mar/21
Mailing List
https://support.apple.com/en-us/HT214084
Vendor Advisory
http://seclists.org/fulldisclosure/2024/Mar/21
Mailing List
https://support.apple.com/en-us/HT214084
Vendor Advisory
https://support.apple.com/kb/HT214084

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Версия от 14.0 (включая) до 14.4 (исключая)

EPSS

Процентиль: 11%

0.00039

Низкий

3.3 Low

CVSS3

7.1 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-284

Связанные уязвимости

GHSA-g3gw-gcgh-qmpp

CVSS3: 7.1

github

почти 2 года назад

An access issue was addressed with improved access restrictions. This issue is fixed in macOS Sonoma 14.4. An app may be able to edit NVRAM variables.

EPSS

Процентиль: 11%

0.00039

Низкий

3.3 Low

CVSS3

7.1 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-284