Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-54541 (GCVE-0-2024-54541)
Vulnerability from cvelistv5 – Published: 2025-01-27 21:45 – Updated: 2026-04-02 18:08
VLAI?
EPSS
Summary
This issue was addressed through improved state management. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. An app may be able to access user-sensitive data.
Severity ?
5.5 (Medium)
CWE
- An app may be able to access user-sensitive data
Assigner
References
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Apple | iOS and iPadOS |
Affected:
0 , < 18.2
(custom)
|
|
| Apple | macOS |
Affected:
0 , < 13.7.2
(custom)
Affected: 0 , < 14.7.2 (custom) Affected: 0 , < 15.2 (custom) |
|
| Apple | tvOS |
Affected:
0 , < 18.2
(custom)
|
|
| Apple | visionOS |
Affected:
0 , < 2.2
(custom)
|
|
| Apple | watchOS |
Affected:
0 , < 11.2
(custom)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-54541",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-01-31T19:40:15.535277Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-922",
"description": "CWE-922 Insecure Storage of Sensitive Information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-18T15:22:23.454Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "iOS and iPadOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "18.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "13.7.2",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"lessThan": "14.7.2",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"lessThan": "15.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"product": "tvOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "18.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"product": "visionOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "2.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"product": "watchOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "11.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "This issue was addressed through improved state management. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. An app may be able to access user-sensitive data."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "An app may be able to access user-sensitive data",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-02T18:08:51.752Z",
"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"shortName": "apple"
},
"references": [
{
"url": "https://support.apple.com/en-us/121837"
},
{
"url": "https://support.apple.com/en-us/121839"
},
{
"url": "https://support.apple.com/en-us/121840"
},
{
"url": "https://support.apple.com/en-us/121842"
},
{
"url": "https://support.apple.com/en-us/121843"
},
{
"url": "https://support.apple.com/en-us/121844"
},
{
"url": "https://support.apple.com/en-us/121845"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"assignerShortName": "apple",
"cveId": "CVE-2024-54541",
"datePublished": "2025-01-27T21:45:28.396Z",
"dateReserved": "2024-12-03T22:50:35.512Z",
"dateUpdated": "2026-04-02T18:08:51.752Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-54541",
"date": "2026-05-17",
"epss": "0.0009",
"percentile": "0.25401"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-54541\",\"sourceIdentifier\":\"product-security@apple.com\",\"published\":\"2025-01-27T22:15:14.117\",\"lastModified\":\"2026-04-02T19:18:52.877\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"This issue was addressed through improved state management. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. An app may be able to access user-sensitive data.\"},{\"lang\":\"es\",\"value\":\"Este problema se solucion\u00f3 mediante con una mejor gesti\u00f3n del estado. Este problema se solucion\u00f3 en macOS Ventura 13.7.2, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 y iPadOS 18.2, macOS Sonoma 14.7.2 y macOS Sequoia 15.2. Es posible que una aplicaci\u00f3n pueda acceder a datos confidenciales del usuario.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-922\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.2\",\"matchCriteriaId\":\"61B67D76-E2DA-46D7-9E43-4E18D542AA57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.2\",\"matchCriteriaId\":\"02BF92BD-305C-46CA-8A77-C247AF8B1BC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"13.7.2\",\"matchCriteriaId\":\"0E37694D-5783-4112-B372-5915C231512F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0\",\"versionEndExcluding\":\"14.7.2\",\"matchCriteriaId\":\"617CA14A-5EA4-4112-A564-DB1A5109A066\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.0\",\"versionEndExcluding\":\"15.2\",\"matchCriteriaId\":\"A29E5D37-B333-4B43-9E4A-012CDD2C406D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.2\",\"matchCriteriaId\":\"3B719BB6-424F-4612-8809-0DF25022C29C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.2\",\"matchCriteriaId\":\"16F83EAF-2879-4515-BC44-6AE5006D35EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"11.2\",\"matchCriteriaId\":\"8C446885-2BC5-454D-88A1-146B17C051C3\"}]}]}],\"references\":[{\"url\":\"https://support.apple.com/en-us/121837\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://support.apple.com/en-us/121839\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://support.apple.com/en-us/121840\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://support.apple.com/en-us/121842\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://support.apple.com/en-us/121843\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://support.apple.com/en-us/121844\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://support.apple.com/en-us/121845\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-54541\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-31T19:40:15.535277Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-922\", \"description\": \"CWE-922 Insecure Storage of Sensitive Information\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-31T19:40:16.892Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Apple\", \"product\": \"tvOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"18.2\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"visionOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"2.2\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"15.2\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"13.7\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"watchOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"11.2\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"iOS and iPadOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"18.2\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"14.7\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://support.apple.com/en-us/121844\"}, {\"url\": \"https://support.apple.com/en-us/121845\"}, {\"url\": \"https://support.apple.com/en-us/121839\"}, {\"url\": \"https://support.apple.com/en-us/121842\"}, {\"url\": \"https://support.apple.com/en-us/121843\"}, {\"url\": \"https://support.apple.com/en-us/121837\"}, {\"url\": \"https://support.apple.com/en-us/121840\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.2, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sonoma 14.7.2, macOS Sequoia 15.2. An app may be able to access user-sensitive data.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"An app may be able to access user-sensitive data\"}]}], \"providerMetadata\": {\"orgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"shortName\": \"apple\", \"dateUpdated\": \"2025-01-27T21:45:28.396Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-54541\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-18T15:22:23.454Z\", \"dateReserved\": \"2024-12-03T22:50:35.512Z\", \"assignerOrgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"datePublished\": \"2025-01-27T21:45:28.396Z\", \"assignerShortName\": \"apple\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
FKIE_CVE-2024-54541
Vulnerability from fkie_nvd - Published: 2025-01-27 22:15 - Updated: 2026-04-02 19:18
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
This issue was addressed through improved state management. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. An app may be able to access user-sensitive data.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"matchCriteriaId": "61B67D76-E2DA-46D7-9E43-4E18D542AA57",
"versionEndExcluding": "18.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "02BF92BD-305C-46CA-8A77-C247AF8B1BC0",
"versionEndExcluding": "18.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0E37694D-5783-4112-B372-5915C231512F",
"versionEndExcluding": "13.7.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "617CA14A-5EA4-4112-A564-DB1A5109A066",
"versionEndExcluding": "14.7.2",
"versionStartIncluding": "14.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A29E5D37-B333-4B43-9E4A-012CDD2C406D",
"versionEndExcluding": "15.2",
"versionStartIncluding": "15.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3B719BB6-424F-4612-8809-0DF25022C29C",
"versionEndExcluding": "18.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "16F83EAF-2879-4515-BC44-6AE5006D35EE",
"versionEndExcluding": "2.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8C446885-2BC5-454D-88A1-146B17C051C3",
"versionEndExcluding": "11.2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "This issue was addressed through improved state management. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. An app may be able to access user-sensitive data."
},
{
"lang": "es",
"value": "Este problema se solucion\u00f3 mediante con una mejor gesti\u00f3n del estado. Este problema se solucion\u00f3 en macOS Ventura 13.7.2, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 y iPadOS 18.2, macOS Sonoma 14.7.2 y macOS Sequoia 15.2. Es posible que una aplicaci\u00f3n pueda acceder a datos confidenciales del usuario."
}
],
"id": "CVE-2024-54541",
"lastModified": "2026-04-02T19:18:52.877",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2025-01-27T22:15:14.117",
"references": [
{
"source": "product-security@apple.com",
"tags": [
"Release Notes"
],
"url": "https://support.apple.com/en-us/121837"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes"
],
"url": "https://support.apple.com/en-us/121839"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes"
],
"url": "https://support.apple.com/en-us/121840"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes"
],
"url": "https://support.apple.com/en-us/121842"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes"
],
"url": "https://support.apple.com/en-us/121843"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes"
],
"url": "https://support.apple.com/en-us/121844"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes"
],
"url": "https://support.apple.com/en-us/121845"
}
],
"sourceIdentifier": "product-security@apple.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-922"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-2XVJ-J4WX-PF4C
Vulnerability from github – Published: 2025-01-28 00:32 – Updated: 2025-01-30 18:32
VLAI?
Details
This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.2, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sonoma 14.7.2, macOS Sequoia 15.2. An app may be able to access user-sensitive data.
Severity ?
5.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2024-54541"
],
"database_specific": {
"cwe_ids": [
"CWE-922"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-01-27T22:15:14Z",
"severity": "MODERATE"
},
"details": "This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.2, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sonoma 14.7.2, macOS Sequoia 15.2. An app may be able to access user-sensitive data.",
"id": "GHSA-2xvj-j4wx-pf4c",
"modified": "2025-01-30T18:32:05Z",
"published": "2025-01-28T00:32:13Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-54541"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/121837"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/121839"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/121840"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/121842"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/121843"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/121844"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/121845"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
BDU:2025-01377
Vulnerability from fstec - Published: 27.01.2025
VLAI Severity ?
Title
Уязвимость операционных систем iOS, iPadOS, tvOS, MacOS, watchOS и visionOS, связанная с ошибками управления состоянием, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Description
Уязвимость операционных систем iOS, iPadOS, tvOS, macOS, watchOS и visionOS связана с ошибками управления состоянием. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, получить доступ к конфиденциальной информации
Severity ?
Vendor
Apple Inc.
Software Name
visionOS, watchOS, iPadOS, iOS, MacOS
Software Version
до 2.2 (visionOS), до 11.2 (watchOS), до 18.2 (iPadOS), до 18.2 (iOS), до Sequoia 15.2 (MacOS), до Sonoma 14.7.2 (MacOS), до Ventura 13.7.2 (MacOS)
Possible Mitigations
Использование рекомендаций производителя:
https://support.apple.com/en-us/121837
https://support.apple.com/en-us/121839
https://support.apple.com/en-us/121840
https://support.apple.com/en-us/121842
https://support.apple.com/en-us/121843
https://support.apple.com/en-us/121844
https://support.apple.com/en-us/121845
Reference
https://support.apple.com/en-us/121837
https://support.apple.com/en-us/121839
https://support.apple.com/en-us/121840
https://support.apple.com/en-us/121842
https://support.apple.com/en-us/121843
https://support.apple.com/en-us/121844
https://support.apple.com/en-us/121845
CWE
CWE-371
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Apple Inc.",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 2.2 (visionOS), \u0434\u043e 11.2 (watchOS), \u0434\u043e 18.2 (iPadOS), \u0434\u043e 18.2 (iOS), \u0434\u043e Sequoia 15.2 (MacOS), \u0434\u043e Sonoma 14.7.2 (MacOS), \u0434\u043e Ventura 13.7.2 (MacOS)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://support.apple.com/en-us/121837\t\nhttps://support.apple.com/en-us/121839\t\nhttps://support.apple.com/en-us/121840\t\nhttps://support.apple.com/en-us/121842\t\nhttps://support.apple.com/en-us/121843\t\nhttps://support.apple.com/en-us/121844\t\nhttps://support.apple.com/en-us/121845",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "27.01.2025",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "12.02.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "12.02.2025",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-01377",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-54541",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "visionOS, watchOS, iPadOS, iOS, MacOS",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Apple Inc. visionOS \u0434\u043e 2.2 , Apple Inc. watchOS \u0434\u043e 11.2 , Apple Inc. iPadOS \u0434\u043e 18.2 , Apple Inc. iOS \u0434\u043e 18.2 , Apple Inc. MacOS \u0434\u043e Sequoia 15.2 , Apple Inc. MacOS \u0434\u043e Sonoma 14.7.2 , Apple Inc. MacOS \u0434\u043e Ventura 13.7.2 ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c iOS, iPadOS, tvOS, MacOS, watchOS \u0438 visionOS, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435\u043c, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435\u043c (CWE-371)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c iOS, iPadOS, tvOS, macOS, watchOS \u0438 visionOS \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435\u043c. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0440\u043e\u043a\u0430\u043c\u0438 \u0438 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435\u043c",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://support.apple.com/en-us/121837\t\nhttps://support.apple.com/en-us/121839\t\nhttps://support.apple.com/en-us/121840\t\nhttps://support.apple.com/en-us/121842\t\nhttps://support.apple.com/en-us/121843\t\nhttps://support.apple.com/en-us/121844\t\nhttps://support.apple.com/en-us/121845",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-371",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,3)"
}
WID-SEC-W-2024-3692
Vulnerability from csaf_certbund - Published: 2024-12-11 23:00 - Updated: 2025-03-24 23:00Summary
Apple macOS: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um seine Privilegien zu erhöhen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand zu erzeugen, Sicherheitsmaßnahmen zu umgehen oder einen Man-in-the-Middle-Angriff durchzuführen.
Betroffene Betriebssysteme: - MacOS X
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS <14.7.2
Apple / macOS
|
<14.7.2 | ||
|
Apple macOS <15.2
Apple / macOS
|
<15.2 | ||
|
Apple macOS <13.7.2
Apple / macOS
|
<13.7.2 |
References
8 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand zu erzeugen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Man-in-the-Middle-Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- MacOS X",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3692 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3692.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3692 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3692"
},
{
"category": "external",
"summary": "Apple Security Announce vom 2024-12-11",
"url": "https://lists.apple.com/archives/security-announce/2024/Dec/msg00002.html"
},
{
"category": "external",
"summary": "Apple Security Announce vom 2024-12-11",
"url": "https://lists.apple.com/archives/security-announce/2024/Dec/msg00003.html"
},
{
"category": "external",
"summary": "Apple Security Announce vom 2024-12-11",
"url": "https://lists.apple.com/archives/security-announce/2024/Dec/msg00004.html"
},
{
"category": "external",
"summary": "Mickey\u0027s Blogs vom 2025-01-08",
"url": "https://jhftss.github.io/CVE-2024-54527-MediaLibraryService-Full-TCC-Bypass/"
},
{
"category": "external",
"summary": "Cyber Security News vom 2025-01-12",
"url": "https://cybersecuritynews.com/macos-sandbox-vulnerability-cve-2024-54498-poc-exploit-released/"
},
{
"category": "external",
"summary": "PoC auf GitHub vom 2025-01-12",
"url": "https://github.com/koreacsl/SysBumps"
}
],
"source_lang": "en-US",
"title": "Apple macOS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-03-24T23:00:00.000+00:00",
"generator": {
"date": "2025-03-25T12:32:48.191+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2024-3692",
"initial_release_date": "2024-12-11T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-12-11T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-01-08T23:00:00.000+00:00",
"number": "2",
"summary": "PoC aufgenommen"
},
{
"date": "2025-01-12T23:00:00.000+00:00",
"number": "3",
"summary": "weiterer PoC aufgenommen"
},
{
"date": "2025-02-12T23:00:00.000+00:00",
"number": "4",
"summary": "weiteren PoC aufgenommen"
},
{
"date": "2025-03-17T23:00:00.000+00:00",
"number": "5",
"summary": "CVE\u0027s erg\u00e4nzt"
},
{
"date": "2025-03-24T23:00:00.000+00:00",
"number": "6",
"summary": "CVE-Nummern erg\u00e4nzt"
}
],
"status": "final",
"version": "6"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c15.2",
"product": {
"name": "Apple macOS \u003c15.2",
"product_id": "T039820"
}
},
{
"category": "product_version",
"name": "15.2",
"product": {
"name": "Apple macOS 15.2",
"product_id": "T039820-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:15.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c14.7.2",
"product": {
"name": "Apple macOS \u003c14.7.2",
"product_id": "T039821"
}
},
{
"category": "product_version",
"name": "14.7.2",
"product": {
"name": "Apple macOS 14.7.2",
"product_id": "T039821-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:14.7.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c13.7.2",
"product": {
"name": "Apple macOS \u003c13.7.2",
"product_id": "T039822"
}
},
{
"category": "product_version",
"name": "13.7.2",
"product": {
"name": "Apple macOS 13.7.2",
"product_id": "T039822-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:13.7.2"
}
}
}
],
"category": "product_name",
"name": "macOS"
}
],
"category": "vendor",
"name": "Apple"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-32395",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2023-32395"
},
{
"cve": "CVE-2024-44201",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44201"
},
{
"cve": "CVE-2024-44220",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44220"
},
{
"cve": "CVE-2024-44224",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44224"
},
{
"cve": "CVE-2024-44225",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44225"
},
{
"cve": "CVE-2024-44243",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44243"
},
{
"cve": "CVE-2024-44245",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44245"
},
{
"cve": "CVE-2024-44246",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44246"
},
{
"cve": "CVE-2024-44248",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44248"
},
{
"cve": "CVE-2024-44291",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44291"
},
{
"cve": "CVE-2024-44300",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-44300"
},
{
"cve": "CVE-2024-45490",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-45490"
},
{
"cve": "CVE-2024-54465",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54465"
},
{
"cve": "CVE-2024-54466",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54466"
},
{
"cve": "CVE-2024-54468",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54468"
},
{
"cve": "CVE-2024-54474",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54474"
},
{
"cve": "CVE-2024-54475",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54475"
},
{
"cve": "CVE-2024-54476",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54476"
},
{
"cve": "CVE-2024-54477",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54477"
},
{
"cve": "CVE-2024-54479",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54479"
},
{
"cve": "CVE-2024-54484",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54484"
},
{
"cve": "CVE-2024-54486",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54486"
},
{
"cve": "CVE-2024-54488",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54488"
},
{
"cve": "CVE-2024-54489",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54489"
},
{
"cve": "CVE-2024-54490",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54490"
},
{
"cve": "CVE-2024-54491",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54491"
},
{
"cve": "CVE-2024-54492",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54492"
},
{
"cve": "CVE-2024-54493",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54493"
},
{
"cve": "CVE-2024-54494",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54494"
},
{
"cve": "CVE-2024-54495",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54495"
},
{
"cve": "CVE-2024-54498",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54498"
},
{
"cve": "CVE-2024-54499",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54499"
},
{
"cve": "CVE-2024-54500",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54500"
},
{
"cve": "CVE-2024-54501",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54501"
},
{
"cve": "CVE-2024-54502",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54502"
},
{
"cve": "CVE-2024-54504",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54504"
},
{
"cve": "CVE-2024-54505",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54505"
},
{
"cve": "CVE-2024-54506",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54506"
},
{
"cve": "CVE-2024-54507",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54507"
},
{
"cve": "CVE-2024-54508",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54508"
},
{
"cve": "CVE-2024-54510",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54510"
},
{
"cve": "CVE-2024-54513",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54513"
},
{
"cve": "CVE-2024-54514",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54514"
},
{
"cve": "CVE-2024-54515",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54515"
},
{
"cve": "CVE-2024-54516",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54516"
},
{
"cve": "CVE-2024-54517",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54517"
},
{
"cve": "CVE-2024-54518",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54518"
},
{
"cve": "CVE-2024-54519",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54519"
},
{
"cve": "CVE-2024-54520",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54520"
},
{
"cve": "CVE-2024-54522",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54522"
},
{
"cve": "CVE-2024-54523",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54523"
},
{
"cve": "CVE-2024-54524",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54524"
},
{
"cve": "CVE-2024-54525",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54525"
},
{
"cve": "CVE-2024-54526",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54526"
},
{
"cve": "CVE-2024-54527",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54527"
},
{
"cve": "CVE-2024-54528",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54528"
},
{
"cve": "CVE-2024-54529",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54529"
},
{
"cve": "CVE-2024-54530",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54530"
},
{
"cve": "CVE-2024-54531",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54531"
},
{
"cve": "CVE-2024-54534",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54534"
},
{
"cve": "CVE-2024-54536",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54536"
},
{
"cve": "CVE-2024-54537",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54537"
},
{
"cve": "CVE-2024-54539",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54539"
},
{
"cve": "CVE-2024-54541",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54541"
},
{
"cve": "CVE-2024-54542",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54542"
},
{
"cve": "CVE-2024-54547",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54547"
},
{
"cve": "CVE-2024-54549",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54549"
},
{
"cve": "CVE-2024-54550",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54550"
},
{
"cve": "CVE-2024-54557",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54557"
},
{
"cve": "CVE-2024-54559",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54559"
},
{
"cve": "CVE-2024-54565",
"product_status": {
"known_affected": [
"T039821",
"T039820",
"T039822"
]
},
"release_date": "2024-12-11T23:00:00.000+00:00",
"title": "CVE-2024-54565"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…