CVE-2024-40855
published 2024-10-28CVE-2024-40855: The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, visionOS 2. A sandboxed app…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, visionOS 2. A sandboxed app may be able to access sensitive user data.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | macos | < 14.7.1 | 14.7.1 |
| apple | macos | < 15 | 15 |
| apple | macos | < 13.7.1 | 13.7.1 |
| apple | macos | >= 14.0 < 14.7.1 | 14.7.1 |
| apple | macos_sequoia | — | — |
| apple | macos_sonoma | — | — |
| apple | macos_ventura | — | — |
| apple | visionos | < 2 | 2 |
| apple | visionos2 | — | — |
Apple
CVE-2024-40855: macOS Sonoma 14.7.1
vendor_apple·2024-10-28·CVSS 5.5
CVE-2024-40855 [MEDIUM] CVE-2024-40855: macOS Sonoma 14.7.1
Apple Security Update: About the security content of macOS Sonoma 14.7.1
Product: macOS Sonoma
Version: 14.7.1
CVE: CVE-2024-40855
Component: DiskArbitration
Impact: A sandboxed app may be able to access sensitive user data
Description: The issue was addressed with improved checks.
Apple
CVE-2024-40855: macOS Ventura 13.7.1
vendor_apple·2024-10-28·CVSS 5.5
CVE-2024-40855 [MEDIUM] CVE-2024-40855: macOS Ventura 13.7.1
Apple Security Update: About the security content of macOS Ventura 13.7.1
Product: macOS Ventura
Version: 13.7.1
CVE: CVE-2024-40855
Component: DiskArbitration
Impact: A sandboxed app may be able to access sensitive user data
Description: The issue was addressed with improved checks.
Apple
CVE-2024-40855: visionOS2
vendor_apple·2024-09-16·CVSS 5.5
CVE-2024-40855 [MEDIUM] CVE-2024-40855: visionOS2
Apple Security Update: About the security content of visionOS2
Product: visionOS2
CVE: CVE-2024-40855
Component: DiskArbitration
Impact: A sandboxed app may be able to access sensitive user data
Description: The issue was addressed with improved checks.
Apple
CVE-2024-40855: macOS Sequoia 15
vendor_apple·2024-09-16·CVSS 5.5
CVE-2024-40855 [MEDIUM] CVE-2024-40855: macOS Sequoia 15
Apple Security Update: About the security content of macOS Sequoia 15
Product: macOS Sequoia
Version: 15
CVE: CVE-2024-40855
Component: DiskArbitration
Impact: A sandboxed app may be able to access sensitive user data
Description: The issue was addressed with improved checks.
GHSA
GHSA-qc88-643m-whjm: The issue was addressed with improved checks
ghsa_unreviewed·2024-10-28
CVE-2024-40855 [MEDIUM] CWE-863 GHSA-qc88-643m-whjm: The issue was addressed with improved checks
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. A sandboxed app may be able to access sensitive user data.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-10-28
Published