Описание
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access sensitive user data.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 14.8.2 (исключая)Версия от 15.0 (включая) до 15.7.2 (исключая)
Одно из
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 0%
0.00007
Низкий
5.5 Medium
CVSS3
Дефекты
CWE-347
Связанные уязвимости
CVSS3: 7.5
github
3 месяца назад
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.8.2, macOS Sequoia 15.7.2. An app may be able to access sensitive user data.
EPSS
Процентиль: 0%
0.00007
Низкий
5.5 Medium
CVSS3
Дефекты
CWE-347