PRIOn knowledge basePRION:CVE-2024-23216

HistoryMar 08, 2024 - 2:15 a.m.

Path traversal

2024-03-0802:15:00

PRIOn knowledge base

www.prio-n.com

path traversal

validation

macos sonoma

macos monterey

macos ventura

arbitrary files

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.4%

JSON

A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to overwrite arbitrary files.

References

seclists.org/fulldisclosure/2024/Mar/21

seclists.org/fulldisclosure/2024/Mar/22

seclists.org/fulldisclosure/2024/Mar/23

support.apple.com/en-us/HT214083

support.apple.com/en-us/HT214084

support.apple.com/en-us/HT214085