Apple Macos Sequoia vulnerabilities

CVE-2024-54541 [MEDIUM] CVE-2024-54541: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54541 Component: APFS Impact: An app may be able to access user-sensitive data Description: This issue was addressed through improved state management.

CVE-2024-54500 [MEDIUM] CVE-2024-54500: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54500 Component: ImageIO Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved checks.

CVE-2024-54474 [MEDIUM] CVE-2024-54474: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54474 Component: PackageKit Impact: An app may be able to access user-sensitive data Description: The issue was addressed with improved checks.

CVE-2024-44246 [MEDIUM] CVE-2024-44246: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-44246 Component: Safari Impact: On a device with Private Relay enabled, adding a website to the Safari Reading List may reveal the originating IP address to the website Description: The issue was addressed with improved routing of Safari-originated requests.

CVE-2024-54513 [MEDIUM] CVE-2024-54513: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54513 Component: Crash Reporter Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional restrictions.

CVE-2024-54550 [MEDIUM] CVE-2024-54550: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54550 Component: Contacts Impact: An app may be able to view autocompleted contact information from Messages and Mail in system logs Description: This issue was addressed with improved redaction of sensitive information.

CVE-2024-54488 [MEDIUM] CVE-2024-54488: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54488 Component: Accounts Impact: Photos in the Hidden Photos Album may be viewed without authentication Description: A logic issue was addressed with improved file handling.

CVE-2024-45306 [MEDIUM] CVE-2024-45306: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-45306 Component: CVE-2024-45306

CVE-2024-54490 [MEDIUM] CVE-2024-54490: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54490 Component: AppleMobileFileIntegrity Impact: A local attacker may gain access to user's Keychain items Description: This issue was addressed by enabling hardened runtime.

CVE-2024-54495 [MEDIUM] CVE-2024-54495: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54495 Component: Swift Impact: An app may be able to modify protected parts of the file system Description: The issue was addressed with improved permissions logic.

CVE-2024-54539 [MEDIUM] CVE-2024-54539: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54539 Component: WindowServer Impact: An app may be able to capture keyboard events from the lock screen Description: This issue was addressed through improved state management.

CVE-2024-54565 [MEDIUM] CVE-2024-54565: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54565 Component: XProtect Impact: An app may be able to access sensitive user data Description: The issue was addressed with improved checks.

CVE-2024-44220 [MEDIUM] CVE-2024-44220: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-44220 Component: AppleGraphicsControl Impact: Parsing a maliciously crafted video file may lead to unexpected system termination Description: The issue was addressed with improved memory handling.

CVE-2024-54484 [MEDIUM] CVE-2024-54484: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54484 Component: MediaRemote Impact: An app may be able to access user-sensitive data Description: The issue was resolved by sanitizing logging.

CVE-2024-54559 [MEDIUM] CVE-2024-54559: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54559 Component: Sandbox Impact: An app may be able to access sensitive user data Description: The issue was addressed with improved checks.

CVE-2024-54501 [MEDIUM] CVE-2024-54501: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54501 Component: SceneKit Impact: Processing a maliciously crafted file may lead to a denial of service Description: The issue was addressed with improved checks.

CVE-2024-54526 [MEDIUM] CVE-2024-54526: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54526 Component: AppleMobileFileIntegrity Impact: A malicious app may be able to access private information Description: The issue was addressed with improved checks.

CVE-2024-54531 [MEDIUM] CVE-2024-54531: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54531 Component: Kernel Impact: An app may be able to bypass kASLR Description: The issue was addressed with improved memory handling.

CVE-2024-54478 [MEDIUM] CVE-2024-54478: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-54478 Component: ICU Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2024-44300 [MEDIUM] CVE-2024-44300: macOS Sequoia 15.2 Apple Security Update: About the security content of macOS Sequoia 15.2 Product: macOS Sequoia Version: 15.2 CVE: CVE-2024-44300 Component: Crash Reporter Impact: An app may be able to access protected user data Description: A logic issue was addressed with improved file handling.