Vulnerability-Lookup

WID-SEC-W-2024-2154

Vulnerability from csaf_certbund - Published: 2024-09-16 22:00 - Updated: 2025-03-11 23:00

Summary

Apple macOS: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um seine Privilegien zu erhöhen, einen Denial-of-Service-Zustand herbeizuführen, Spoofing-Angriffe durchzuführen, Daten zu ändern, Sicherheitsmaßnahmen zu umgehen und vertrauliche Informationen offenzulegen

Betroffene Betriebssysteme: - MacOS X

CVE-2023-4504

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2023-5841

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-23237

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27792

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27795

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27809

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27849

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27853

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27858

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27859

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27860

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27861

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27869

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27875

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27876

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27880

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27886

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27887

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-27888

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-39894

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40770

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40791

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40792

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40797

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40801

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40814

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40825

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40826

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40831

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40837

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40838

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40841

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40842

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40843

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40844

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40845

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40846

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40847

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40848

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40850

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40855

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40856

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40857

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40859

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40860

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40861

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-40866

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-41957

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44122

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44123

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44125

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44126

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44128

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44129

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44130

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44131

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44132

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44133

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44134

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44135

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44137

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44144

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44145

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44146

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44148

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44149

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44151

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44152

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44153

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44154

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44155

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44158

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44160

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44161

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44163

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44164

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44165

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44166

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44167

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44168

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44169

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44170

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44172

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44174

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44175

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44176

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44177

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44178

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44179

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44181

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44182

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44183

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44184

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44186

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44187

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44188

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44189

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44190

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44191

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44192

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44198

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44203

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44208

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-44227

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-54463

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-54467

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-54469

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-54473

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-54546

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-54558

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-54560

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

CVE-2024-54658

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Sequoia <15 Apple / macOS		Sequoia <15
Apple macOS Sonoma <14.7 Apple / macOS		Sonoma <14.7
Apple macOS Ventura <13.7 Apple / macOS		Ventura <13.7

References

8 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://support.apple.com/en-us/121238	external
https://support.apple.com/en-us/121247	external
https://support.apple.com/en-us/121234	external
https://lists.apple.com/archives/security-announc…	external
https://lists.apple.com/archives/security-announc…	external
https://lists.apple.com/archives/security-announc…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um seine Privilegien zu erh\u00f6hen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, Spoofing-Angriffe durchzuf\u00fchren, Daten zu \u00e4ndern, Sicherheitsma\u00dfnahmen zu umgehen und vertrauliche Informationen offenzulegen",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- MacOS X",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-2154 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2154.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-2154 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2154"
      },
      {
        "category": "external",
        "summary": "About the security content of macOS Sequoia 15 vom 2024-09-16",
        "url": "https://support.apple.com/en-us/121238"
      },
      {
        "category": "external",
        "summary": "About the security content of macOS Sonoma 14.7 vom 2024-09-16",
        "url": "https://support.apple.com/en-us/121247"
      },
      {
        "category": "external",
        "summary": "About the security content of macOS Ventura 13.7 vom 2024-09-16",
        "url": "https://support.apple.com/en-us/121234"
      },
      {
        "category": "external",
        "summary": "APPLE-SA-09-16-2024-10 macOS Ventura 13.7 vom 2024-09-16",
        "url": "https://lists.apple.com/archives/security-announce/2024/Sep/msg00009.html"
      },
      {
        "category": "external",
        "summary": "APPLE-SA-09-16-2024-2 macOS Sequoia 15 vom 2024-09-16",
        "url": "https://lists.apple.com/archives/security-announce/2024/Sep/msg00001.html"
      },
      {
        "category": "external",
        "summary": "APPLE-SA-09-16-2024-9 macOS Sonoma 14.7 vom 2024-09-16",
        "url": "https://lists.apple.com/archives/security-announce/2024/Sep/msg00008.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Apple macOS: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-03-11T23:00:00.000+00:00",
      "generator": {
        "date": "2025-03-12T09:22:54.279+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-2154",
      "initial_release_date": "2024-09-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-09-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-10-28T23:00:00.000+00:00",
          "number": "2",
          "summary": "CVE\u0027s erg\u00e4nzt"
        },
        {
          "date": "2025-02-05T23:00:00.000+00:00",
          "number": "3",
          "summary": "CVE\u0027s erg\u00e4nzt"
        },
        {
          "date": "2025-03-11T23:00:00.000+00:00",
          "number": "4",
          "summary": "CVE-Nummern erg\u00e4nzt"
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Sequoia \u003c15",
                "product": {
                  "name": "Apple macOS Sequoia \u003c15",
                  "product_id": "T037659"
                }
              },
              {
                "category": "product_version",
                "name": "Sequoia 15",
                "product": {
                  "name": "Apple macOS Sequoia 15",
                  "product_id": "T037659-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:mac_os:sequoia__15"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Sonoma \u003c14.7",
                "product": {
                  "name": "Apple macOS Sonoma \u003c14.7",
                  "product_id": "T037660"
                }
              },
              {
                "category": "product_version",
                "name": "Sonoma 14.7",
                "product": {
                  "name": "Apple macOS Sonoma 14.7",
                  "product_id": "T037660-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:mac_os:sonoma__14.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Ventura \u003c13.7",
                "product": {
                  "name": "Apple macOS Ventura \u003c13.7",
                  "product_id": "T037661"
                }
              },
              {
                "category": "product_version",
                "name": "Ventura 13.7",
                "product": {
                  "name": "Apple macOS Ventura 13.7",
                  "product_id": "T037661-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:mac_os:ventura__13.7"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "macOS"
          }
        ],
        "category": "vendor",
        "name": "Apple"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-4504",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2023-4504"
    },
    {
      "cve": "CVE-2023-5841",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2023-5841"
    },
    {
      "cve": "CVE-2024-23237",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-23237"
    },
    {
      "cve": "CVE-2024-27792",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27792"
    },
    {
      "cve": "CVE-2024-27795",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27795"
    },
    {
      "cve": "CVE-2024-27809",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27809"
    },
    {
      "cve": "CVE-2024-27849",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27849"
    },
    {
      "cve": "CVE-2024-27853",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27853"
    },
    {
      "cve": "CVE-2024-27858",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27858"
    },
    {
      "cve": "CVE-2024-27859",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27859"
    },
    {
      "cve": "CVE-2024-27860",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27860"
    },
    {
      "cve": "CVE-2024-27861",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27861"
    },
    {
      "cve": "CVE-2024-27869",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27869"
    },
    {
      "cve": "CVE-2024-27875",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27875"
    },
    {
      "cve": "CVE-2024-27876",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27876"
    },
    {
      "cve": "CVE-2024-27880",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27880"
    },
    {
      "cve": "CVE-2024-27886",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27886"
    },
    {
      "cve": "CVE-2024-27887",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27887"
    },
    {
      "cve": "CVE-2024-27888",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-27888"
    },
    {
      "cve": "CVE-2024-39894",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-39894"
    },
    {
      "cve": "CVE-2024-40770",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40770"
    },
    {
      "cve": "CVE-2024-40791",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40791"
    },
    {
      "cve": "CVE-2024-40792",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40792"
    },
    {
      "cve": "CVE-2024-40797",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40797"
    },
    {
      "cve": "CVE-2024-40801",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40801"
    },
    {
      "cve": "CVE-2024-40814",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40814"
    },
    {
      "cve": "CVE-2024-40825",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40825"
    },
    {
      "cve": "CVE-2024-40826",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40826"
    },
    {
      "cve": "CVE-2024-40831",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40831"
    },
    {
      "cve": "CVE-2024-40837",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40837"
    },
    {
      "cve": "CVE-2024-40838",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40838"
    },
    {
      "cve": "CVE-2024-40841",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40841"
    },
    {
      "cve": "CVE-2024-40842",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40842"
    },
    {
      "cve": "CVE-2024-40843",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40843"
    },
    {
      "cve": "CVE-2024-40844",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40844"
    },
    {
      "cve": "CVE-2024-40845",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40845"
    },
    {
      "cve": "CVE-2024-40846",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40846"
    },
    {
      "cve": "CVE-2024-40847",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40847"
    },
    {
      "cve": "CVE-2024-40848",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40848"
    },
    {
      "cve": "CVE-2024-40850",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40850"
    },
    {
      "cve": "CVE-2024-40855",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40855"
    },
    {
      "cve": "CVE-2024-40856",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40856"
    },
    {
      "cve": "CVE-2024-40857",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40857"
    },
    {
      "cve": "CVE-2024-40859",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40859"
    },
    {
      "cve": "CVE-2024-40860",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40860"
    },
    {
      "cve": "CVE-2024-40861",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40861"
    },
    {
      "cve": "CVE-2024-40866",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-40866"
    },
    {
      "cve": "CVE-2024-41957",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-41957"
    },
    {
      "cve": "CVE-2024-44122",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44122"
    },
    {
      "cve": "CVE-2024-44123",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44123"
    },
    {
      "cve": "CVE-2024-44125",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44125"
    },
    {
      "cve": "CVE-2024-44126",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44126"
    },
    {
      "cve": "CVE-2024-44128",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44128"
    },
    {
      "cve": "CVE-2024-44129",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44129"
    },
    {
      "cve": "CVE-2024-44130",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44130"
    },
    {
      "cve": "CVE-2024-44131",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44131"
    },
    {
      "cve": "CVE-2024-44132",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44132"
    },
    {
      "cve": "CVE-2024-44133",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44133"
    },
    {
      "cve": "CVE-2024-44134",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44134"
    },
    {
      "cve": "CVE-2024-44135",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44135"
    },
    {
      "cve": "CVE-2024-44137",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44137"
    },
    {
      "cve": "CVE-2024-44144",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44144"
    },
    {
      "cve": "CVE-2024-44145",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44145"
    },
    {
      "cve": "CVE-2024-44146",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44146"
    },
    {
      "cve": "CVE-2024-44148",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44148"
    },
    {
      "cve": "CVE-2024-44149",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44149"
    },
    {
      "cve": "CVE-2024-44151",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44151"
    },
    {
      "cve": "CVE-2024-44152",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44152"
    },
    {
      "cve": "CVE-2024-44153",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44153"
    },
    {
      "cve": "CVE-2024-44154",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44154"
    },
    {
      "cve": "CVE-2024-44155",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44155"
    },
    {
      "cve": "CVE-2024-44158",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44158"
    },
    {
      "cve": "CVE-2024-44160",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44160"
    },
    {
      "cve": "CVE-2024-44161",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44161"
    },
    {
      "cve": "CVE-2024-44163",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44163"
    },
    {
      "cve": "CVE-2024-44164",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44164"
    },
    {
      "cve": "CVE-2024-44165",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44165"
    },
    {
      "cve": "CVE-2024-44166",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44166"
    },
    {
      "cve": "CVE-2024-44167",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44167"
    },
    {
      "cve": "CVE-2024-44168",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44168"
    },
    {
      "cve": "CVE-2024-44169",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44169"
    },
    {
      "cve": "CVE-2024-44170",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44170"
    },
    {
      "cve": "CVE-2024-44172",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44172"
    },
    {
      "cve": "CVE-2024-44174",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44174"
    },
    {
      "cve": "CVE-2024-44175",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44175"
    },
    {
      "cve": "CVE-2024-44176",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44176"
    },
    {
      "cve": "CVE-2024-44177",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44177"
    },
    {
      "cve": "CVE-2024-44178",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44178"
    },
    {
      "cve": "CVE-2024-44179",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44179"
    },
    {
      "cve": "CVE-2024-44181",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44181"
    },
    {
      "cve": "CVE-2024-44182",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44182"
    },
    {
      "cve": "CVE-2024-44183",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44183"
    },
    {
      "cve": "CVE-2024-44184",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44184"
    },
    {
      "cve": "CVE-2024-44186",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44186"
    },
    {
      "cve": "CVE-2024-44187",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44187"
    },
    {
      "cve": "CVE-2024-44188",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44188"
    },
    {
      "cve": "CVE-2024-44189",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44189"
    },
    {
      "cve": "CVE-2024-44190",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44190"
    },
    {
      "cve": "CVE-2024-44191",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44191"
    },
    {
      "cve": "CVE-2024-44192",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44192"
    },
    {
      "cve": "CVE-2024-44198",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44198"
    },
    {
      "cve": "CVE-2024-44203",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44203"
    },
    {
      "cve": "CVE-2024-44208",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44208"
    },
    {
      "cve": "CVE-2024-44227",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-44227"
    },
    {
      "cve": "CVE-2024-54463",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-54463"
    },
    {
      "cve": "CVE-2024-54467",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-54467"
    },
    {
      "cve": "CVE-2024-54469",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-54469"
    },
    {
      "cve": "CVE-2024-54473",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-54473"
    },
    {
      "cve": "CVE-2024-54546",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-54546"
    },
    {
      "cve": "CVE-2024-54558",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-54558"
    },
    {
      "cve": "CVE-2024-54560",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-54560"
    },
    {
      "cve": "CVE-2024-54658",
      "product_status": {
        "known_affected": [
          "T037659",
          "T037660",
          "T037661"
        ]
      },
      "release_date": "2024-09-16T22:00:00.000+00:00",
      "title": "CVE-2024-54658"
    }
  ]
}

CVE-2023-4504 (GCVE-0-2023-4504)

Vulnerability from cvelistv5 – Published: 2023-09-21 22:47 – Updated: 2025-11-04 16:10

Title

OpenPrinting CUPS/libppd Postscript Parsing Heap Overflow

Summary

Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in CUPS version 2.4.7, released in September of 2023.

Severity

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-122 - Heap-based Buffer Overflow

Assigner

AHA

References

10 references

URL	Tags
https://takeonme.org/cves/CVE-2023-4504.html	technical-descriptionthird-party-advisory
https://github.com/OpenPrinting/libppd/security/a…	vendor-advisory
https://github.com/OpenPrinting/cups/security/adv…	vendor-advisory
https://github.com/OpenPrinting/cups/releases/tag…	release-notes
https://lists.fedoraproject.org/archives/list/pac…
https://lists.fedoraproject.org/archives/list/pac…
https://lists.fedoraproject.org/archives/list/pac…
https://lists.fedoraproject.org/archives/list/pac…
https://lists.debian.org/debian-lts-announce/2023…
https://lists.fedoraproject.org/archives/list/pac…

Impacted products

2 products

Vendor	Product	Version
OpenPrinting	CUPS	Affected: 0 , < 2.4.6 (semver)
OpenPrinting	libppd	Affected: 0 , < d09348b (git)

Date Public

2023-09-20 12:35

Credits

zenofex WanderingGlitch Austin Hackers Anonymous!

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T16:10:38.138Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "technical-description",
              "third-party-advisory",
              "x_transferred"
            ],
            "url": "https://takeonme.org/cves/CVE-2023-4504.html"
          },
          {
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://github.com/OpenPrinting/libppd/security/advisories/GHSA-4f65-6ph5-qwh6"
          },
          {
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://github.com/OpenPrinting/cups/security/advisories/GHSA-pf5r-86w9-678h"
          },
          {
            "tags": [
              "release-notes",
              "x_transferred"
            ],
            "url": "https://github.com/OpenPrinting/cups/releases/tag/v2.4.7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AMYDKIE4PSJDEMC5OWNFCDMHFGLJ57XG/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WVS4I7JG3LISFPKTM6ADKJXXEPEEWBQ/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WHEJIYMMAIXU2EC35MGTB5LGGO2FFJE/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T2GSPQAFK2Z6L57TRXEKZDF42K2EVBH7/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00041.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PXPVADB56NMLJWG4IZ3OZBNJ2ZOLPQJ6/"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2024/Sep/33"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-4504",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-23T13:29:05.900883Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-23T16:16:13.304Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "CUPS",
          "vendor": "OpenPrinting",
          "versions": [
            {
              "lessThan": "2.4.6",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "libppd",
          "vendor": "OpenPrinting",
          "versions": [
            {
              "lessThan": "d09348b",
              "status": "affected",
              "version": "0",
              "versionType": "git"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "zenofex"
        },
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "WanderingGlitch"
        },
        {
          "lang": "en",
          "type": "coordinator",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Austin Hackers Anonymous!"
        }
      ],
      "datePublic": "2023-09-20T12:35:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eDue to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in CUPS version 2.4.7, released in September of 2023.\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in CUPS version 2.4.7, released in September of 2023."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-122",
              "description": "CWE-122 Heap-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-10-07T02:06:38.717Z",
        "orgId": "26969f82-7e87-44d8-9cb5-f6fb926ddd43",
        "shortName": "AHA"
      },
      "references": [
        {
          "tags": [
            "technical-description",
            "third-party-advisory"
          ],
          "url": "https://takeonme.org/cves/CVE-2023-4504.html"
        },
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://github.com/OpenPrinting/libppd/security/advisories/GHSA-4f65-6ph5-qwh6"
        },
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://github.com/OpenPrinting/cups/security/advisories/GHSA-pf5r-86w9-678h"
        },
        {
          "tags": [
            "release-notes"
          ],
          "url": "https://github.com/OpenPrinting/cups/releases/tag/v2.4.7"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AMYDKIE4PSJDEMC5OWNFCDMHFGLJ57XG/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WVS4I7JG3LISFPKTM6ADKJXXEPEEWBQ/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WHEJIYMMAIXU2EC35MGTB5LGGO2FFJE/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T2GSPQAFK2Z6L57TRXEKZDF42K2EVBH7/"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00041.html"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PXPVADB56NMLJWG4IZ3OZBNJ2ZOLPQJ6/"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "OpenPrinting CUPS/libppd Postscript Parsing Heap Overflow",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "26969f82-7e87-44d8-9cb5-f6fb926ddd43",
    "assignerShortName": "AHA",
    "cveId": "CVE-2023-4504",
    "datePublished": "2023-09-21T22:47:41.879Z",
    "dateReserved": "2023-08-23T21:14:04.183Z",
    "dateUpdated": "2025-11-04T16:10:38.138Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2023-5841 (GCVE-0-2023-5841)

Vulnerability from cvelistv5 – Published: 2024-02-01 18:28 – Updated: 2025-11-04 16:10

Title

OpenEXR Heap Overflow in Scanline Deep Data Parsing

Summary

Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. This issue was resolved as of versions v3.2.2 and v3.1.12 of the affected library.

Severity

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE

CWE-122 - Heap-based Buffer Overflow

Assigner

AHA

References

3 references

URL	Tags
https://takeonme.org/cves/CVE-2023-5841.html
https://lists.fedoraproject.org/archives/list/pac…
https://lists.fedoraproject.org/archives/list/pac…

Impacted products

1 product

Vendor	Product	Version
Academy Software Foundation	OpenEXR	Affected: 0 , ≤ 3.2.1 (semver) Unaffected: 3.2.2 Unaffected: 3.1.12

Date Public

2024-01-31 22:35

Credits

zenofex WanderingGlitch Austin Hackers Anonymous!

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T16:10:52.466Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://takeonme.org/cves/CVE-2023-5841.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LSB6DB5LAKGPLRXEF5HDNGUMT7GIFT2C/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XWMINVKQLSUHECXBSQMZFCSDRIHFOJJI/"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2024/Sep/36"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2024/Sep/34"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2024/Sep/32"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 9.1,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-5841",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-15T15:17:50.765495Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-15T15:18:17.317Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "OpenEXR",
          "vendor": "Academy Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "3.2.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "status": "unaffected",
              "version": "3.2.2"
            },
            {
              "status": "unaffected",
              "version": "3.1.12"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "zenofex"
        },
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "WanderingGlitch"
        },
        {
          "lang": "en",
          "type": "coordinator",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Austin Hackers Anonymous!"
        }
      ],
      "datePublic": "2024-01-31T22:35:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX\u0026nbsp;image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. This issue was resolved as of versions\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ev3.2.2 and v3.1.12 of the affected library.\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX\u00a0image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. This issue was resolved as of versions\u00a0v3.2.2 and v3.1.12 of the affected library."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-122",
              "description": "CWE-122: Heap-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-02-25T02:06:23.585Z",
        "orgId": "26969f82-7e87-44d8-9cb5-f6fb926ddd43",
        "shortName": "AHA"
      },
      "references": [
        {
          "url": "https://takeonme.org/cves/CVE-2023-5841.html"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LSB6DB5LAKGPLRXEF5HDNGUMT7GIFT2C/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XWMINVKQLSUHECXBSQMZFCSDRIHFOJJI/"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "OpenEXR Heap Overflow in Scanline Deep Data Parsing",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "26969f82-7e87-44d8-9cb5-f6fb926ddd43",
    "assignerShortName": "AHA",
    "cveId": "CVE-2023-5841",
    "datePublished": "2024-02-01T18:28:05.892Z",
    "dateReserved": "2023-10-29T23:41:19.153Z",
    "dateUpdated": "2025-11-04T16:10:52.466Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-23237 (GCVE-0-2024-23237)

Vulnerability from cvelistv5 – Published: 2024-09-16 23:22 – Updated: 2026-04-02 18:07

Summary

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An app may be able to cause a denial-of-service.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

An app may be able to cause a denial-of-service

Assigner

apple

References

1 reference

URL	Tags
https://support.apple.com/en-us/121238

Impacted products

1 product

Vendor	Product	Version
Apple	macOS	Affected: 0 , < 15 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-23237",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-18T13:51:18.642644Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-25T16:30:45.809Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T16:11:14.706Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://seclists.org/fulldisclosure/2024/Sep/33"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "15",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An app may be able to cause a denial-of-service."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to cause a denial-of-service",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:07:37.203Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/121238"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-23237",
    "datePublished": "2024-09-16T23:22:10.750Z",
    "dateReserved": "2024-01-12T22:22:21.480Z",
    "dateUpdated": "2026-04-02T18:07:37.203Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27792 (GCVE-0-2024-27792)

Vulnerability from cvelistv5 – Published: 2024-06-10 19:20 – Updated: 2026-04-02 18:12

Summary

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE

An app may be able to access user-sensitive data

Assigner

apple

References

1 reference

URL	Tags
https://support.apple.com/en-us/120895

Impacted products

1 product

Vendor	Product	Version
Apple	macOS	Affected: 0 , < 14.4 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27792",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-11T14:42:44.653926Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-284",
                "description": "CWE-284 Improper Access Control",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-13T14:28:34.929Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T18:30:16.530Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214084"
          },
          {
            "url": "https://support.apple.com/kb/HT214084"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to access user-sensitive data",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:12:33.489Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120895"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27792",
    "datePublished": "2024-06-10T19:20:58.327Z",
    "dateReserved": "2024-02-26T15:32:28.515Z",
    "dateUpdated": "2026-04-02T18:12:33.489Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27795 (GCVE-0-2024-27795)

Vulnerability from cvelistv5 – Published: 2024-09-16 23:22 – Updated: 2026-04-02 18:11

Summary

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A camera extension may be able to access the internet.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

A camera extension may be able to access the internet

Assigner

apple

References

1 reference

URL	Tags
https://support.apple.com/en-us/121238

Impacted products

1 product

Vendor	Product	Version
Apple	macOS	Affected: 0 , < 15 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27795",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-17T20:47:34.206584Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-281",
                "description": "CWE-281 Improper Preservation of Permissions",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-25T14:23:45.920Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T16:11:28.649Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://seclists.org/fulldisclosure/2024/Sep/33"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "15",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A camera extension may be able to access the internet."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "A camera extension may be able to access the internet",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:11:00.629Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/121238"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27795",
    "datePublished": "2024-09-16T23:22:23.747Z",
    "dateReserved": "2024-02-26T15:32:28.515Z",
    "dateUpdated": "2026-04-02T18:11:00.629Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27809 (GCVE-0-2024-27809)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:16 – Updated: 2026-04-02 18:07

Summary

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

An app may be able to access user-sensitive data

Assigner

apple

References

1 reference

URL	Tags
https://support.apple.com/en-us/120895

Impacted products

1 product

Vendor	Product	Version
Apple	macOS	Affected: 0 , < 14.4 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27809",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-29T23:46:33.655734Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-13T17:34:38.561Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:41:55.481Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214084"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214084"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to access user-sensitive data",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:07:33.010Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120895"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27809",
    "datePublished": "2024-07-29T22:16:27.629Z",
    "dateReserved": "2024-02-26T15:32:28.519Z",
    "dateUpdated": "2026-04-02T18:07:33.010Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27849 (GCVE-0-2024-27849)

Vulnerability from cvelistv5 – Published: 2024-10-28 21:07 – Updated: 2026-04-02 18:12

Summary

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to read sensitive location information.

Severity

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWE

An app may be able to read sensitive location information

Assigner

apple

References

1 reference

URL	Tags
https://support.apple.com/en-us/121238

Impacted products

1 product

Vendor	Product	Version
Apple	macOS	Affected: 0 , < 15 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 3.3,
              "baseSeverity": "LOW",
              "confidentialityImpact": "LOW",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27849",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-30T20:23:44.071472Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-532",
                "description": "CWE-532 Insertion of Sensitive Information into Log File",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T20:24:32.024Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "15",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to read sensitive location information."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to read sensitive location information",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:12:12.718Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/121238"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27849",
    "datePublished": "2024-10-28T21:07:57.859Z",
    "dateReserved": "2024-02-26T15:32:28.531Z",
    "dateUpdated": "2026-04-02T18:12:12.718Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27853 (GCVE-0-2024-27853)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:16 – Updated: 2026-04-02 18:10

Summary

This issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4. A maliciously crafted ZIP archive may bypass Gatekeeper checks.

Severity

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

CWE

A maliciously crafted ZIP archive may bypass Gatekeeper checks

Assigner

apple

References

1 reference

URL	Tags
https://support.apple.com/en-us/120895

Impacted products

1 product

Vendor	Product	Version
Apple	macOS	Affected: 0 , < 14.4 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 4.4,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27853",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-31T16:32:26.115428Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-290",
                "description": "CWE-290 Authentication Bypass by Spoofing",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-19T14:16:26.490Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:41:55.745Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214084"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214084"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "This issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4. A maliciously crafted ZIP archive may bypass Gatekeeper checks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "A maliciously crafted ZIP archive may bypass Gatekeeper checks",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:10:38.112Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120895"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27853",
    "datePublished": "2024-07-29T22:16:38.700Z",
    "dateReserved": "2024-02-26T15:32:28.539Z",
    "dateUpdated": "2026-04-02T18:10:38.112Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27858 (GCVE-0-2024-27858)

Vulnerability from cvelistv5 – Published: 2024-09-16 23:22 – Updated: 2026-04-02 18:14

Summary

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

An app may be able to access protected user data

Assigner

apple

References

1 reference

URL	Tags
https://support.apple.com/en-us/121238

Impacted products

1 product

Vendor	Product	Version
Apple	macOS	Affected: 0 , < 15 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27858",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-17T14:53:55.226317Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-281",
                "description": "CWE-281 Improper Preservation of Permissions",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-18T20:16:49.848Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T16:11:29.627Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://seclists.org/fulldisclosure/2024/Sep/33"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "15",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to access protected user data",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:14:27.171Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/121238"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27858",
    "datePublished": "2024-09-16T23:22:36.830Z",
    "dateReserved": "2024-02-26T15:32:28.540Z",
    "dateUpdated": "2026-04-02T18:14:27.171Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27859 (GCVE-0-2024-27859)

Vulnerability from cvelistv5 – Published: 2025-02-10 18:09 – Updated: 2026-04-02 18:15

Summary

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing web content may lead to arbitrary code execution.

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

Processing web content may lead to arbitrary code execution

Assigner

apple

References

5 references

URL	Tags
https://support.apple.com/en-us/120881
https://support.apple.com/en-us/120882
https://support.apple.com/en-us/120883
https://support.apple.com/en-us/120893
https://support.apple.com/en-us/120895

Impacted products

5 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: 0 , < 17.4 (custom)
Apple	macOS	Affected: 0 , < 14.4 (custom)
Apple	tvOS	Affected: 0 , < 17.4 (custom)
Apple	visionOS	Affected: 0 , < 1.1 (custom)
Apple	watchOS	Affected: 0 , < 10.4 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27859",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-11T14:59:20.982393Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-94",
                "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-15T14:58:30.650Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "visionOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "1.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "watchOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "10.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing web content may lead to arbitrary code execution."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing web content may lead to arbitrary code execution",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:15:28.799Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120881"
        },
        {
          "url": "https://support.apple.com/en-us/120882"
        },
        {
          "url": "https://support.apple.com/en-us/120883"
        },
        {
          "url": "https://support.apple.com/en-us/120893"
        },
        {
          "url": "https://support.apple.com/en-us/120895"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27859",
    "datePublished": "2025-02-10T18:09:24.906Z",
    "dateReserved": "2024-02-26T15:32:28.540Z",
    "dateUpdated": "2026-04-02T18:15:28.799Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2024-2154

CVE-2023-4504 (GCVE-0-2023-4504)

CVE-2023-5841 (GCVE-0-2023-5841)

CVE-2024-23237 (GCVE-0-2024-23237)

CVE-2024-27792 (GCVE-0-2024-27792)

CVE-2024-27795 (GCVE-0-2024-27795)

CVE-2024-27809 (GCVE-0-2024-27809)

CVE-2024-27849 (GCVE-0-2024-27849)

CVE-2024-27853 (GCVE-0-2024-27853)

CVE-2024-27858 (GCVE-0-2024-27858)

CVE-2024-27859 (GCVE-0-2024-27859)

Tags

Sightings

Nomenclature