Apple Macos Sequoia vulnerabilities

CVE-2024-44270 [HIGH] CVE-2024-44270: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44270 Component: AppleMobileFileIntegrity Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A logic issue was addressed with improved validation.

CVE-2024-40858 [HIGH] CVE-2024-40858: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-40858 Component: Photos Impact: An app may be able to access Contacts without user consent Description: A permissions issue was addressed with additional restrictions.

CVE-2024-44218 [HIGH] CVE-2024-44218: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44218 Component: SceneKit Impact: Processing a maliciously crafted file may lead to heap corruption Description: This issue was addressed with improved checks.

CVE-2024-44215 [MEDIUM] CVE-2024-44215: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44215 Component: ImageIO Impact: Processing an image may result in disclosure of process memory Description: This issue was addressed with improved checks.

CVE-2024-44284 [MEDIUM] CVE-2024-44284: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44284 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44254 [MEDIUM] CVE-2024-44254: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44254 Component: Shortcuts Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved redaction of sensitive information.

CVE-2024-40854 [MEDIUM] CVE-2024-40854: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-40854 Component: GPU Drivers Impact: An app may be able to cause unexpected system termination Description: A memory initialization issue was addressed with improved memory handling.

CVE-2024-44216 [MEDIUM] CVE-2024-44216: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44216 Component: Installer Impact: An app may be able to access user-sensitive data Description: An access issue was addressed with additional sandbox restrictions.

CVE-2024-44283 [MEDIUM] CVE-2024-44283: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44283 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44275 [MEDIUM] CVE-2024-44275: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44275 Component: PackageKit Impact: A malicious application may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2024-44297 [MEDIUM] CVE-2024-44297: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44297 Component: ImageIO Impact: Processing a maliciously crafted message may lead to a denial-of-service Description: The issue was addressed with improved bounds checks.

CVE-2024-44229 [MEDIUM] CVE-2024-44229: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44229 Component: Safari Private Browsing Impact: Private browsing may leak some browsing history Description: An information leakage was addressed with additional validation.

CVE-2024-44240 [MEDIUM] CVE-2024-44240: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44240 Component: CoreText Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: The issue was addressed with improved checks.

CVE-2024-44280 [MEDIUM] CVE-2024-44280: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44280 Component: AppleMobileFileIntegrity Impact: An app may be able to modify protected parts of the file system Description: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.

CVE-2024-54535 [MEDIUM] CVE-2024-54535: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-54535 Component: Calendar Impact: An attacker with access to calendar data could also read reminders Description: A path handling issue was addressed with improved logic.

CVE-2024-44211 [MEDIUM] CVE-2024-44211: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44211 Component: Sandbox Impact: An app may be able to access user-sensitive data Description: This issue was addressed with improved validation of symlinks.

CVE-2024-44244 [MEDIUM] CVE-2024-44244: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44244 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A memory corruption issue was addressed with improved input validation.

CVE-2024-44273 [MEDIUM] CVE-2024-44273: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44273 Component: CoreMedia Playback Impact: A malicious app may be able to access private information Description: This issue was addressed with improved handling of symlinks.

CVE-2024-44281 [MEDIUM] CVE-2024-44281: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44281 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44287 [MEDIUM] CVE-2024-44287: macOS Sequoia 15.1 Apple Security Update: About the security content of macOS Sequoia 15.1 Product: macOS Sequoia Version: 15.1 CVE: CVE-2024-44287 Component: Installer Impact: A malicious application may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.