Vulnerabilities > CVE-2024-23233 - Unspecified vulnerability in Apple Macos

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

apple

NVD

Published: 2024-03-08

Updated: 2024-12-05

Summary

This issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4. Entitlements and privacy permissions granted to this app may be used by a malicious app.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple Macos 14.0 Apple Macos 14.1 Apple Macos 14.1.1 Apple Macos 14.1.2 Apple Macos 14.2 Apple Macos 14.2.1 Apple Macos 14.3	7

References

http://seclists.org/fulldisclosure/2024/Mar/21
http://seclists.org/fulldisclosure/2024/Mar/21
https://support.apple.com/en-us/HT214084
https://support.apple.com/en-us/HT214084