Lucene search
AppleVULNRICHMENT:CVE-2024-40848HistorySep 16, 2024 - 11:23 p.m.
CVE-2024-40848
2024-09-1623:23:29
apple
github.com
cve-2024-40848
macos ventura
macos sonoma
macos sequoia
sensitive information
code-signing restrictions
downgrade issue
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
28.9%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An attacker may be able to read sensitive information.
Related
cve
cve
CVE-2024-40848
2024-09-17 00:15:49
nvd
nvd
CVE-2024-40848
2024-09-17 00:15:49
cvelist
cvelist
CVE-2024-40848
2024-09-16 23:23:29
openvas
openvas
Apple MacOSX Security Update (HT121234)
2024-09-20 00:00:00
Apple MacOSX Security Update (HT121247)
2024-09-20 00:00:00
nessus
nessus
macOS 13.x < 13.7 Multiple Vulnerabilities (121234)
2024-09-16 00:00:00
macOS 14.x < 14.7 Multiple Vulnerabilities (121247)
2024-09-16 00:00:00
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
28.9%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-40848