Lucene search
AppleCVE-2024-44125HistorySep 17, 2024 - 12:15 a.m.
CVE-2024-44125
2024-09-1700:15:49
apple
web.nvd.nist.gov
22
cve
macos
sonoma
sequoia
sensitive information
malicious application
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
AI Score
5.9
Confidence
Low
EPSS
0.001
Percentile
21.4%
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. A malicious application may be able to leak sensitive user information.
Affected configurations
Node
applemacosRange<14.7
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "15",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.7",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-44125
2024-09-17 00:15:49
cvelist
cvelist
CVE-2024-44125
2024-09-16 23:23:12
vulnrichment
vulnrichment
CVE-2024-44125
2024-09-16 23:23:12
openvas
openvas
Apple MacOSX Security Update (HT121247)
2024-09-20 00:00:00
nessus
nessus
macOS 14.x < 14.7 Multiple Vulnerabilities (121247)
2024-09-16 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
AI Score
5.9
Confidence
Low
EPSS
0.001
Percentile
21.4%
Related for CVE-2024-44125