CVE-2024-27813

Опубликовано: 14 мая 2024

Источник: nvd

CVSS3: 8.6

CVSS3: 5.3

EPSS Низкий

Описание

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.

Ссылки

http://seclists.org/fulldisclosure/2024/May/12
Mailing List
https://support.apple.com/en-us/HT214106
Vendor Advisory
https://support.apple.com/kb/HT214106
Vendor Advisory
http://seclists.org/fulldisclosure/2024/May/12
Mailing List
https://support.apple.com/en-us/HT214106
Vendor Advisory
https://support.apple.com/kb/HT214106
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Версия от 14.0 (включая) до 14.5 (исключая)

EPSS

Процентиль: 20%

0.00065

Низкий

8.6 High

CVSS3

5.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-j3mh-hgxq-fp6h

CVSS3: 5.3

github

больше 1 года назад

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.

EPSS

Процентиль: 20%

0.00065

Низкий

8.6 High

CVSS3

5.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo