CVE-2024-44156

7.1HIGH

Key Information

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 28 October 2024

Summary

A path deletion vulnerability was addressed by preventing vulnerable code from running with privileges. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to bypass Privacy preferences.

Affected Version(s)

macOS < 14.7

macOS < 13.7

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Oct 28, 2024

Collectors

NVD DatabaseMitre Database