Apple Macos Ventura vulnerabilities

CVE-2024-44283 [MEDIUM] CVE-2024-44283: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44283 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44264 [MEDIUM] CVE-2024-44264: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44264 Component: SystemMigration Impact: A malicious app may be able to create symlinks to protected regions of the disk Description: This issue was addressed with improved validation of symlinks.

CVE-2024-44269 [MEDIUM] CVE-2024-44269: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44269 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44294 [MEDIUM] CVE-2024-44294: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44294 Component: PackageKit Impact: An attacker with root privileges may be able to delete protected system files Description: A path deletion vulnerability was addressed by preventing vulnerable code from running with privileges.

CVE-2024-44236 [MEDIUM] CVE-2024-44236: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44236 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44284 [MEDIUM] CVE-2024-44284: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44284 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44197 [MEDIUM] CVE-2024-44197: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44197 Component: IOGPUFamily Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: The issue was addressed with improved memory handling.

CVE-2024-44215 [MEDIUM] CVE-2024-44215: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44215 Component: ImageIO Impact: Processing an image may result in disclosure of process memory Description: This issue was addressed with improved checks.

CVE-2024-44278 [MEDIUM] CVE-2024-44278: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44278 Component: Siri Impact: A sandboxed app may be able to access sensitive user data in system logs Description: An information disclosure issue was addressed with improved private data redaction for log entries.

CVE-2024-44260 [MEDIUM] CVE-2024-44260: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44260 Component: Assets Impact: A malicious app with root privileges may be able to modify the contents of system files Description: This issue was addressed by removing the vulnerable code.

CVE-2024-44216 [MEDIUM] CVE-2024-44216: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44216 Component: Installer Impact: An app may be able to access user-sensitive data Description: An access issue was addressed with additional sandbox restrictions.

CVE-2024-44287 [MEDIUM] CVE-2024-44287: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44287 Component: Installer Impact: A malicious application may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2024-44196 [MEDIUM] CVE-2024-44196: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44196 Component: PackageKit Impact: An app may be able to modify protected parts of the file system Description: A permissions issue was addressed with additional restrictions.

CVE-2024-44237 [MEDIUM] CVE-2024-44237: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44237 Component: Shortcuts Impact: A malicious app may use shortcuts to access restricted files Description: A logic issue was addressed with improved checks.

CVE-2024-44247 [MEDIUM] CVE-2024-44247: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44247 Component: PackageKit Impact: A malicious application may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2024-44257 [MEDIUM] CVE-2024-44257: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44257 Component: WindowServer Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved redaction of sensitive information.

CVE-2024-44282 [MEDIUM] CVE-2024-44282: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44282 Component: Foundation Impact: Parsing a file may lead to disclosure of user information Description: An out-of-bounds read was addressed with improved input validation.

CVE-2024-44239 [MEDIUM] CVE-2024-44239: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44239 Component: Kernel Impact: An app may be able to leak sensitive kernel state Description: An information disclosure issue was addressed with improved private data redaction for log entries.

CVE-2024-54471 [MEDIUM] CVE-2024-54471: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-54471 Component: NetAuth Impact: A malicious application may be able to leak a user's credentials Description: This issue was addressed with additional entitlement checks.

CVE-2024-44301 [MEDIUM] CVE-2024-44301: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44301 Component: PackageKit Impact: A malicious application may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.