Apple Macossonoma14.7.2 vulnerabilities

CVE-2024-54509 [HIGH] CVE-2024-54509: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54509 Component: ASP TCP Impact: An app may be able to cause unexpected system termination or write kernel memory Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2024-54468 [HIGH] CVE-2024-54468: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54468 Component: Kernel Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2024-54498 [HIGH] CVE-2024-54498: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54498 Component: SharedFileList Impact: An app may be able to break out of its sandbox Description: A path handling issue was addressed with improved validation.

CVE-2024-44291 [HIGH] CVE-2024-44291: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-44291 Component: Software Update Impact: A malicious app may be able to gain root privileges Description: A logic issue was addressed with improved file handling.

CVE-2024-44225 [HIGH] CVE-2024-44225: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-44225 Component: CVE-2024-45490 Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2024-54529 [HIGH] CVE-2024-54529: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54529 Component: Audio Impact: An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges Description: A logic issue was addressed with improved checks.

CVE-2024-45490 [HIGH] CVE-2024-45490: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-45490 Component: CVE-2024-45490 Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2024-54489 [HIGH] CVE-2024-54489: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54489 Component: Disk Utility Impact: Running a mount command may unexpectedly execute arbitrary code Description: A path handling issue was addressed with improved validation.

CVE-2024-54528 [HIGH] CVE-2024-54528: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54528 Component: SharedFileList Impact: An app may be able to overwrite arbitrary files Description: A logic issue was addressed with improved restrictions.

CVE-2024-54514 [HIGH] CVE-2024-54514: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54514 Component: CVE-2024-45490 Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2024-44245 [HIGH] CVE-2024-44245: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-44245 Component: Kernel Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: The issue was addressed with improved memory handling.

CVE-2024-44224 [HIGH] CVE-2024-44224: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-44224 Component: StorageKit Impact: A malicious app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2024-54557 [HIGH] CVE-2024-54557: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54557 Component: SharedFileList Impact: An attacker may gain access to protected parts of the file system Description: A logic issue was addressed with improved restrictions.

CVE-2024-54537 [HIGH] CVE-2024-54537: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54537 Component: QuickTime Player Impact: An app may be able to read and write files outside of its sandbox Description: This issue was addressed with additional entitlement checks.

CVE-2024-44220 [MEDIUM] CVE-2024-44220: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-44220 Component: AppleGraphicsControl Impact: Parsing a maliciously crafted video file may lead to unexpected system termination Description: The issue was addressed with improved memory handling.

CVE-2024-44248 [MEDIUM] CVE-2024-44248: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-44248 Component: Screen Sharing Server Impact: A user with screen sharing access may be able to view another user's screen Description: This issue was addressed through improved state management.

CVE-2024-54494 [MEDIUM] CVE-2024-54494: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54494 Component: Kernel Impact: An attacker may be able to create a read-only memory mapping that can be written to Description: A race condition was addressed with additional validation.

CVE-2024-54500 [MEDIUM] CVE-2024-54500: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54500 Component: ImageIO Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved checks.

CVE-2024-54547 [MEDIUM] CVE-2024-54547: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54547 Component: Dock Impact: An app may be able to access protected user data Description: The issue was addressed with improved checks.

CVE-2024-54495 [MEDIUM] CVE-2024-54495: macOSSonoma14.7.2 Apple Security Update: About the security content of macOSSonoma14.7.2 Product: macOSSonoma14.7.2 CVE: CVE-2024-54495 Component: Swift Impact: An app may be able to modify protected parts of the file system Description: The issue was addressed with improved permissions logic.