CVE-2024-27888

Опубликовано: 29 июл. 2024

Источник: nvd

CVSS3: 5.5

CVSS3: 7.1

EPSS Низкий

Описание

A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Sonoma 14.4. An app may be able to modify protected parts of the file system.

Ссылки

https://support.apple.com/en-us/HT214084
Vendor Advisory
https://support.apple.com/kb/HT214084
Vendor Advisory
https://support.apple.com/en-us/HT214084
Vendor Advisory
https://support.apple.com/kb/HT214084
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Версия от 14.0 (включая) до 14.4 (исключая)

EPSS

Процентиль: 6%

0.00025

Низкий

5.5 Medium

CVSS3

7.1 High

CVSS3

Дефекты

CWE-276

CWE-281

Связанные уязвимости

GHSA-vm96-hfhp-3pvp

CVSS3: 7.1

github

больше 1 года назад

A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Sonoma 14.4. An app may be able to modify protected parts of the file system.

EPSS

Процентиль: 6%

0.00025

Низкий

5.5 Medium

CVSS3

7.1 High

CVSS3

Дефекты

CWE-276

CWE-281