PT-2024-36351 · Apple · Apple Macos
Meng Zhang
+1
·
Published
2024-12-11
·
Updated
2024-12-13
·
CVE-2024-54484
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
macOS versions prior to 15.2
Description:
The issue was resolved by sanitizing logging. An app may be able to access user-sensitive data.
Recommendations:
For versions prior to 15.2, update to macOS Sequoia 15.2 to resolve the issue. As a temporary workaround, consider restricting access to sensitive user data until the update is applied.
Fix
Improper Preservation of Permissions
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apple Macos