CVE-2024-40781
CVE-2024-40781
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.4EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Jul 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. A local attacker may be able to elevate their privileges.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Apple · macOSReferences
http://seclists.org/fulldisclosure/2024/Jul/18http://seclists.org/fulldisclosure/2024/Jul/19http://seclists.org/fulldisclosure/2024/Jul/20https://support.apple.com/en-us/120910https://support.apple.com/en-us/120911https://support.apple.com/en-us/120912https://support.apple.com/en-us/HT214118https://support.apple.com/en-us/HT214119https://support.apple.com/en-us/HT214120https://support.apple.com/kb/HT214118https://support.apple.com/kb/HT214119https://support.apple.com/kb/HT214120