Apple Macosventura13.7.2 vulnerabilities

CVE-2024-44225 [HIGH] CVE-2024-44225: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-44225 Component: CVE-2024-45490 Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2024-54529 [HIGH] CVE-2024-54529: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54529 Component: Audio Impact: An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges Description: A logic issue was addressed with improved checks.

CVE-2024-54489 [HIGH] CVE-2024-54489: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54489 Component: Disk Utility Impact: Running a mount command may unexpectedly execute arbitrary code Description: A path handling issue was addressed with improved validation.

CVE-2024-54557 [HIGH] CVE-2024-54557: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54557 Component: SharedFileList Impact: An attacker may gain access to protected parts of the file system Description: A logic issue was addressed with improved restrictions.

CVE-2024-54528 [HIGH] CVE-2024-54528: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54528 Component: SharedFileList Impact: An app may be able to overwrite arbitrary files Description: A logic issue was addressed with improved restrictions.

CVE-2024-54514 [HIGH] CVE-2024-54514: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54514 Component: CVE-2024-45490 Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2024-54468 [HIGH] CVE-2024-54468: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54468 Component: Kernel Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2024-45490 [HIGH] CVE-2024-45490: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-45490 Component: CVE-2024-45490 Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2024-44291 [HIGH] CVE-2024-44291: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-44291 Component: Software Update Impact: A malicious app may be able to gain root privileges Description: A logic issue was addressed with improved file handling.

CVE-2024-54498 [HIGH] CVE-2024-54498: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54498 Component: SharedFileList Impact: An app may be able to break out of its sandbox Description: A path handling issue was addressed with improved validation.

CVE-2024-44224 [HIGH] CVE-2024-44224: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-44224 Component: StorageKit Impact: A malicious app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2024-54537 [HIGH] CVE-2024-54537: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54537 Component: QuickTime Player Impact: An app may be able to read and write files outside of its sandbox Description: This issue was addressed with additional entitlement checks.

CVE-2024-54547 [MEDIUM] CVE-2024-54547: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54547 Component: Dock Impact: An app may be able to access protected user data Description: The issue was addressed with improved checks.

CVE-2024-54527 [MEDIUM] CVE-2024-54527: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54527 Component: AppleMobileFileIntegrity Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved checks.

CVE-2024-54474 [MEDIUM] CVE-2024-54474: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54474 Component: PackageKit Impact: An app may be able to access user-sensitive data Description: The issue was addressed with improved checks.

CVE-2024-54486 [MEDIUM] CVE-2024-54486: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54486 Component: FontParser Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: The issue was addressed with improved checks.

CVE-2024-54520 [MEDIUM] CVE-2024-54520: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54520 Component: System Settings Impact: An app may be able to overwrite arbitrary files Description: A path handling issue was addressed with improved validation.

CVE-2024-54501 [MEDIUM] CVE-2024-54501: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54501 Component: SceneKit Impact: Processing a maliciously crafted file may lead to a denial of service Description: The issue was addressed with improved checks.

CVE-2024-54510 [MEDIUM] CVE-2024-54510: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54510 Component: Kernel Impact: An app may be able to leak sensitive kernel state Description: A race condition was addressed with improved locking.

CVE-2024-54466 [MEDIUM] CVE-2024-54466: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54466 Component: DiskArbitration Impact: An encrypted volume may be accessed by a different user without prompting for the password Description: An authorization issue was addressed with improved state management.