Lucene search

[email protected]CVE-2024-23236

HistoryMay 14, 2024 - 2:58 p.m.

CVE-2024-23236

2024-05-1414:58:48

[email protected]

web.nvd.nist.gov

macos sonoma

file read

vulnerability

nvd

cve-2024-23236

correctness issue

5.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON

A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to read arbitrary files.

Affected configurations

Vulners

Node

applemacosRange<14.5

VendorProductVersionCPE
applemacos*cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	macos	*	cpe:2.3:o:apple:macos::::::::

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "macOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "14.5",
        "versionType": "custom"
      }
    ]
  }
]

References

seclists.org/fulldisclosure/2024/May/12

support.apple.com/en-us/HT214106

support.apple.com/kb/HT214106