CVE-2024-27842

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions macOS Sonoma versions prior to 14.5

Description The issue allows an app to execute arbitrary code with kernel privileges. It is related to a buffer overflow in the IOAESAccelerator component of the UDF file system in Mac OS, which can be exploited by a remote attacker to elevate privileges.

Recommendations For versions prior to 14.5, update to macOS Sonoma 14.5 to resolve the issue. As a temporary workaround, consider restricting kernel-level access to minimize the risk of exploitation.

Exploit

Fix

Improperly Implemented Security Check for Standard

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-358CWE-121

Related Identifiers

BDU:2024-04815

CVE-2024-27842

Affected Products

Apple Macos

Macos Sonoma

CVE-2024-27842

Weakness Enumeration

Related Identifiers

Affected Products

References · 20