CVE-2024-27825

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.5. An app may be able to bypass certain Privacy preferences.
Configurations

No configuration.

History

03 Jul 2024, 01:51

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CWE CWE-277

10 Jun 2024, 18:15

Type Values Removed Values Added
References
  • () http://seclists.org/fulldisclosure/2024/May/12 -
  • () https://support.apple.com/kb/HT214106 -
Summary
  • (es) Un problema de degradación que afectaba a las computadoras Mac basadas en Intel se solucionó con restricciones adicionales de firma de código. Este problema se solucionó en macOS Sonoma 14.5. Es posible que una aplicación pueda omitir ciertas preferencias de privacidad.

14 May 2024, 15:13

Type Values Removed Values Added
New CVE

Information

Published : 2024-05-14 15:13

Updated : 2024-07-03 01:51


NVD link : CVE-2024-27825

Mitre link : CVE-2024-27825

CVE.ORG link : CVE-2024-27825


JSON object : View

Products Affected

No product.

CWE
CWE-277

Insecure Inherited Permissions