Apple Macos Sonoma vulnerabilities

CVE-2024-44281 [MEDIUM] CVE-2024-44281: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44281 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44247 [MEDIUM] CVE-2024-44247: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44247 Component: PackageKit Impact: A malicious application may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2024-44144 [MEDIUM] CVE-2024-44144: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44144 Component: SceneKit Impact: Processing a maliciously crafted file may lead to unexpected app termination Description: A buffer overflow was addressed with improved size validation.

CVE-2024-44215 [MEDIUM] CVE-2024-44215: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44215 Component: ImageIO Impact: Processing an image may result in disclosure of process memory Description: This issue was addressed with improved checks.

CVE-2024-44254 [MEDIUM] CVE-2024-44254: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44254 Component: Shortcuts Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved redaction of sensitive information.

CVE-2024-44216 [MEDIUM] CVE-2024-44216: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44216 Component: Installer Impact: An app may be able to access user-sensitive data Description: An access issue was addressed with additional sandbox restrictions.

CVE-2024-44302 [MEDIUM] CVE-2024-44302: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44302 Component: CoreText Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: The issue was addressed with improved checks.

CVE-2024-44264 [MEDIUM] CVE-2024-44264: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44264 Component: SystemMigration Impact: A malicious app may be able to create symlinks to protected regions of the disk Description: This issue was addressed with improved validation of symlinks.

CVE-2024-44175 [MEDIUM] CVE-2024-44175: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44175 Component: Kernel Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved validation of symlinks.

CVE-2024-44222 [LOW] CVE-2024-44222: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44222 Component: Maps Impact: An app may be able to read sensitive location information Description: This issue was addressed with improved redaction of sensitive information.

CVE-2024-44265 [LOW] CVE-2024-44265: macOS Sonoma 14.7.1 Apple Security Update: About the security content of macOS Sonoma 14.7.1 Product: macOS Sonoma Version: 14.7.1 CVE: CVE-2024-44265 Component: Game Controllers Impact: An attacker with physical access can input Game Controller events to apps running on a locked device Description: The issue was addressed by restricting options offered on a locked device.

CVE-2024-40848 [HIGH] CVE-2024-40848: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-40848 Component: AppleMobileFileIntegrity Impact: An attacker may be able to read sensitive information Description: A downgrade issue was addressed with additional code-signing restrictions.

CVE-2024-44126 [HIGH] CVE-2024-44126: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-44126 Component: ARKit Impact: Processing a maliciously crafted file may lead to heap corruption Description: The issue was addressed with improved checks.

CVE-2024-44164 [HIGH] CVE-2024-44164: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-44164 Component: AppleMobileFileIntegrity Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved checks.

CVE-2024-44165 [HIGH] CVE-2024-44165: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-44165 Component: Kernel Impact: Network traffic may leak outside a VPN tunnel Description: A logic issue was addressed with improved checks.

CVE-2024-40846 [MEDIUM] CVE-2024-40846: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-40846 Component: AppleGraphicsControl Impact: Processing a maliciously crafted video file may lead to unexpected app termination Description: The issue was addressed with improved memory handling.

CVE-2024-44190 [MEDIUM] CVE-2024-44190: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-44190 Component: System Settings Impact: An app may be able to read arbitrary files Description: A path handling issue was addressed with improved validation.

CVE-2024-44160 [MEDIUM] CVE-2024-44160: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-44160 Component: Intel Graphics Driver Impact: Processing a maliciously crafted texture may lead to unexpected app termination Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2024-44177 [MEDIUM] CVE-2024-44177: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-44177 Component: Dock Impact: An app may be able to access user-sensitive data Description: A privacy issue was addressed by removing sensitive data.

CVE-2024-44161 [MEDIUM] CVE-2024-44161: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-44161 Component: Intel Graphics Driver Impact: Processing a maliciously crafted texture may lead to unexpected app termination Description: An out-of-bounds read was addressed with improved bounds checking.