Lucene search
AppleVULNRICHMENT:CVE-2024-27885HistoryJun 10, 2024 - 8:56 p.m.
CVE-2024-27885
2024-06-1020:56:45
apple
github.com
9
cve-2024-27885
symlinks
macos sonoma
macos ventura
macos monterey
file system modification
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
20.2%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5. An app may be able to modify protected parts of the file system.
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "13.6",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "14.5",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "12.7",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2024-27885
2024-06-10 20:56:45
nvd
nvd
CVE-2024-27885
2024-06-10 21:15:51
cve
cve
CVE-2024-27885
2024-06-10 21:15:51
apple
apple
About the security content of macOS Monterey 12.7.5
2024-05-13 00:00:00
About the security content of macOS Ventura 13.6.7
2024-05-13 00:00:00
About the security content of macOS Sonoma 14.5
2024-05-13 00:00:00
openvas
openvas
Apple MacOSX Security Update (HT214105)
2024-05-14 00:00:00
Apple MacOSX Security Update (HT214107)
2024-05-14 00:00:00
Apple MacOSX Security Update (HT214106)
2024-05-14 00:00:00
nessus
nessus
macOS 12.x < 12.7.5 Multiple Vulnerabilities (HT214105)
2024-05-13 00:00:00
macOS 13.x < 13.6.7 Multiple Vulnerabilities (HT214107)
2024-05-13 00:00:00
macOS 14.x < 14.5 Multiple Vulnerabilities (HT214106)
2024-05-13 00:00:00
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
20.2%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-27885