Lucene search
AppleCVELIST:CVE-2024-40848HistorySep 16, 2024 - 11:23 p.m.
CVE-2024-40848
2024-09-1623:23:29
apple
www.cve.org
2
downgrade issue
code-signing restrictions
macos updates
sensitive information
EPSS
0.001
Percentile
28.9%
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An attacker may be able to read sensitive information.
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "13.7",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "15",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.7",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-40848
2024-09-16 23:23:29
cve
cve
CVE-2024-40848
2024-09-17 00:15:49
nvd
nvd
CVE-2024-40848
2024-09-17 00:15:49
openvas
openvas
Apple MacOSX Security Update (HT121234)
2024-09-20 00:00:00
Apple MacOSX Security Update (HT121247)
2024-09-20 00:00:00
nessus
nessus
macOS 13.x < 13.7 Multiple Vulnerabilities (121234)
2024-09-16 00:00:00
macOS 14.x < 14.7 Multiple Vulnerabilities (121247)
2024-09-16 00:00:00