CVE-2024-44146
CVE-2024-44146
10.0
CriticalPublished:
Last updated:
Source:product-security@apple.com
Modified
CVSS Vector
v3.1- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- None
- Scope
- Changed
- Confidentiality
- High
- Integrity
- High
- Availability
- High
Description
A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15. An app may be able to break out of its sandbox.
References
product-security@apple.com
https://support.apple.com/en-us/121238af854a3a-2127-422b-91ae-364da2661108
http://seclists.org/fulldisclosure/2024/Sep/33