PT-2025-3040 · Apple · Apple Macos
7Feilee
+1
·
Published
2024-12-11
·
Updated
2025-02-18
·
CVE-2024-54519
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
macOS versions prior to 14.7.2
macOS versions prior to 15.2
Description
The issue is related to insufficient protection of service data in the Find My component of MacOs, which may allow an attacker to disclose protected information. An app may be able to read sensitive location information. The issue was resolved by sanitizing logging.
Recommendations
For versions prior to 14.7.2, update to macOS Sonoma 14.7.2 to resolve the issue.
For versions prior to 15.2, update to macOS Sequoia 15.2 to resolve the issue.
Fix
Information Disclosure
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apple Macos