Lucene search
AppleCVE-2024-27843HistoryMay 14, 2024 - 3:13 p.m.
CVE-2024-27843
2024-05-1415:13:08
apple
web.nvd.nist.gov
36
logic issue
privilege elevation
macos sonoma 14.5
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
4.5
Confidence
High
EPSS
0
Percentile
15.5%
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to elevate privileges.
Affected configurations
Node
applemacosRange<14.5
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.5",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-27843
2024-05-13 23:00:52
cvelist
cvelist
CVE-2024-27843
2024-05-13 23:00:52
nvd
nvd
CVE-2024-27843
2024-05-14 15:13:08
nessus
nessus
macOS 12.x < 12.7.5 Multiple Vulnerabilities (HT214105)
2024-05-13 00:00:00
macOS 13.x < 13.6.7 Multiple Vulnerabilities (HT214107)
2024-05-13 00:00:00
macOS 14.x < 14.5 Multiple Vulnerabilities (HT214106)
2024-05-13 00:00:00
apple
apple
About the security content of macOS Monterey 12.7.5
2024-05-13 00:00:00
About the security content of macOS Ventura 13.6.7
2024-05-13 00:00:00
About the security content of macOS Sonoma 14.5
2024-05-13 00:00:00
openvas
openvas
Apple MacOSX Security Update (HT214105)
2024-05-14 00:00:00
Apple MacOSX Security Update (HT214107)
2024-05-14 00:00:00
Apple MacOSX Security Update (HT214106)
2024-05-14 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
4.5
Confidence
High
EPSS
0
Percentile
15.5%
Related for CVE-2024-27843