CVE-2024-27872

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sonoma 14.6. An app may be able to access protected user data.

CVSS

No CVSS.

References

Link	Resource
http://seclists.org/fulldisclosure/2024/Jul/18
https://support.apple.com/en-us/HT214119

Configurations

No configuration.

History

30 Jul 2024, 13:32

Type	Values Removed	Values Added
Summary		(es) Este problema se solucionó con una validación mejorada de los enlaces simbólicos. Este problema se solucionó en macOS Sonoma 14.6. Es posible que una aplicación pueda acceder a datos de usuario protegidos.

30 Jul 2024, 02:15

Type	Values Removed	Values Added
References		() http://seclists.org/fulldisclosure/2024/Jul/18 -

29 Jul 2024, 23:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-29 23:15

Updated : 2024-07-30 13:32

NVD link : CVE-2024-27872

Mitre link : CVE-2024-27872

CVE.ORG link : CVE-2024-27872

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-27872

Attach tags to `CVE-2024-27872`