Lucene search
AppleVULNRICHMENT:CVE-2024-27837HistoryMay 13, 2024 - 11:00 p.m.
CVE-2024-27837
2024-05-1323:00:53
apple
github.com
7
downgrade
code-signing
macos sonoma
local attacker
keychain items
AI Score
6
Confidence
Low
EPSS
0
Percentile
15.5%
SSVC
Exploitation
None
Automatable
Yes
Technical Impact
Total
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.5. A local attacker may gain access to Keychain items.
ADP Affected
[
{
"cpes": [
"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*"
],
"vendor": "apple",
"product": "macos",
"versions": [
{
"status": "affected",
"version": "-",
"lessThan": "14.5",
"versionType": "semver"
}
],
"defaultStatus": "unknown"
}
]Related
cve
cve
CVE-2024-27837
2024-05-14 15:13:07
nvd
nvd
CVE-2024-27837
2024-05-14 15:13:07
cvelist
cvelist
CVE-2024-27837
2024-05-13 23:00:53
openvas
openvas
Apple MacOSX Security Update (HT214106)
2024-05-14 00:00:00
apple
apple
About the security content of macOS Sonoma 14.5
2024-05-13 00:00:00
nessus
nessus
macOS 14.x < 14.5 Multiple Vulnerabilities (HT214106)
2024-05-13 00:00:00
AI Score
6
Confidence
Low
EPSS
0
Percentile
15.5%
SSVC
Exploitation
None
Automatable
Yes
Technical Impact
Total
Related for VULNRICHMENT:CVE-2024-27837