CVE-2024-27848

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions iPadOS versions prior to 17.5 iOS versions prior to 17.5 macOS versions prior to Sonoma 14.5

Description The issue relates to inherited permissions errors within the StorageKit component. Exploitation may allow an attacker to elevate privileges to the root level. A malicious application may be able to gain root privileges.

Recommendations Update to iPadOS 17.5 or later. Update to iOS 17.5 or later. Update to macOS Sonoma 14.5 or later.

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-277

Related Identifiers

BDU:2024-05366

CVE-2024-27848

Affected Products

Apple Macos

Ios

Ipados

Macos Sonoma

CVE-2024-27848

Weakness Enumeration

Related Identifiers

Affected Products

References · 15