Описание
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.6. An app may be able to bypass Privacy preferences.
Ссылки
- Mailing List
- Vendor Advisory
- Mailing List
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 14.0 (включая) до 14.6 (исключая)
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00029
Низкий
7.1 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-285
Связанные уязвимости
CVSS3: 7.1
github
больше 1 года назад
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.6. An app may be able to bypass Privacy preferences.
EPSS
Процентиль: 8%
0.00029
Низкий
7.1 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-285