CVE-2024-54498 Information

Dec 15, 2024 cve

Description

A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.2 macOS Ventura 13.7.2 macOS Sonoma 14.7.2. An app may be able to break out of its sandbox.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Reference

https://support.apple.com/en-us/121839 https://support.apple.com/en-us/121840 https://support.apple.com/en-us/121842

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

CHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.8

Share on: