Network Protocol Handling Issue in Apple macOS Products
CVE-2024-40864

2.7LOW

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 31 March 2025

Summary

A network protocol handling issue has been identified in Apple’s macOS, enabling potential attackers in privileged network positions to monitor user activities. This vulnerability underscores the importance of robust network security measures. Apple has addressed this issue in versions macOS Ventura 13.7.5 and macOS Sonoma 14.7.5, improving the handling of protocols to enhance user privacy.

Affected Version(s)

macOS < 14.7

macOS < 13.7

References

https://support.apple.com/en-us/122374

https://support.apple.com/en-us/122375

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 31, 2025
Vulnerability Reserved
Jul 10, 2024