CVE-2024-27861

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions macOS versions prior to Sequoia 15

Description The issue is related to improved memory handling, allowing an application to potentially read restricted memory. This is a result of a memory corruption flaw. The estimated impact of this issue is not specified, but it may allow remote attackers to disclose sensitive information on affected installations.

Recommendations For macOS versions prior to Sequoia 15, update to macOS Sequoia 15 to resolve the issue. As a temporary workaround, consider restricting access to sensitive information until the update can be applied.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2024-27861

ZDI-24-1276

ZDI-24-1277

ZDI-24-1278

ZDI-24-1280

ZDI-24-1281

Affected Products

Apple Macos

CVE-2024-27861

Weakness Enumeration

Related Identifiers

Affected Products

References · 16