CVE-2024-44243

Name of the Vulnerable Software and Affected Versions macOS versions prior to 15.2

Description The issue is related to a configuration problem that has been addressed with additional restrictions. It allows an app to modify protected parts of the file system. The vulnerability can be exploited by local attackers with root privileges and user interaction, potentially leading to the installation of malicious kernel drivers, rootkits, or other persistent malware. The vulnerability is related to the Storage Kit component, which is responsible for maintaining disk state, and it can be exploited by loading third-party kernel extensions, bypassing System Integrity Protection (SIP).

Recommendations To resolve the issue, update to macOS Sequoia 15.2 or later. As a temporary workaround, consider restricting access to the Storage Kit component or disabling the loading of third-party kernel extensions until a patch is available. Additionally, users should be cautious when interacting with applications that require root privileges, as this could potentially lead to exploitation of the vulnerability.