Vulnerabilities > CVE-2024-44298 - Insecure Storage of Sensitive Information vulnerability in Apple Macos 15.0

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

local

low complexity

apple

CWE-922

NVD

Published: 2024-12-20

Updated: 2025-01-07

Summary

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.1. An app may be able to access information about a user's contacts.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple Macos 15.0	1

Common Weakness Enumeration (CWE)

CWE-922 - Insecure Storage of Sensitive Information

References

https://support.apple.com/en-us/121564