Lucene search
HistoryJun 10, 2024 - 8:15 p.m.
CVE-2024-27792
vulnerability
fix
macos sonoma 14.4
user-sensitive data access
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
0.001 Low
EPSS
Percentile
20.9%
This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data.
Affected configurations
Node
applemacosRange<14.4
References
Related
vulnrichment
vulnrichment
CVE-2024-27792
2024-06-10 19:20:58
cve
cve
CVE-2024-27792
2024-06-10 20:15:13
cvelist
cvelist
CVE-2024-27792
2024-06-10 19:20:58
nessus
nessus
macOS 14.x < 14.4 Multiple Vulnerabilities (HT214084)
2024-03-07 00:00:00
apple
apple
About the security content of macOS Sonoma 14.4
2024-03-07 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
0.001 Low
EPSS
Percentile
20.9%
Related for NVD:CVE-2024-27792