Kernel Privilege Escalation Vulnerability in macOS

CVE-2024-44306

7.8HIGH

Key Information

Vendor
Apple
Status
Mac OS
Vendor
CVE Published:
20 November 2024

Summary

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.6. An app may be able to execute arbitrary code with kernel privileges.

Affected Version(s)

macOS < 14.6

References

https://support.apple.com/en-us/120911

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

Collectors

NVD DatabaseMitre Database
.