Apple Macosventura13.7.2 vulnerabilities

CVE-2024-54500 [MEDIUM] CVE-2024-54500: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54500 Component: ImageIO Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved checks.

CVE-2024-54488 [MEDIUM] CVE-2024-54488: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54488 Component: Accounts Impact: Photos in the Hidden Photos Album may be viewed without authentication Description: A logic issue was addressed with improved file handling.

CVE-2024-44248 [MEDIUM] CVE-2024-44248: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-44248 Component: Screen Sharing Server Impact: A user with screen sharing access may be able to view another user's screen Description: This issue was addressed through improved state management.

CVE-2024-44300 [MEDIUM] CVE-2024-44300: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-44300 Component: Crash Reporter Impact: An app may be able to access protected user data Description: A logic issue was addressed with improved file handling.

CVE-2024-54526 [MEDIUM] CVE-2024-54526: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54526 Component: AppleMobileFileIntegrity Impact: A malicious app may be able to access private information Description: The issue was addressed with improved checks.

CVE-2024-54541 [MEDIUM] CVE-2024-54541: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54541 Component: APFS Impact: An app may be able to access user-sensitive data Description: This issue was addressed through improved state management.

CVE-2024-44201 [MEDIUM] CVE-2024-44201: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-44201 Component: Kernel Impact: An app may be able to leak sensitive kernel state Description: A race condition was addressed with improved locking.

CVE-2024-54477 [MEDIUM] CVE-2024-54477: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54477 Impact: An app may be able to access user-sensitive data Description: The issue was addressed with improved checks.

CVE-2024-54476 [MEDIUM] CVE-2024-54476: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54476 Component: PackageKit Impact: An app may be able to access user-sensitive data Description: The issue was addressed with improved checks.

CVE-2024-54494 [MEDIUM] CVE-2024-54494: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54494 Component: Kernel Impact: An attacker may be able to create a read-only memory mapping that can be written to Description: A race condition was addressed with additional validation.

CVE-2024-54539 [MEDIUM] CVE-2024-54539: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54539 Component: WindowServer Impact: An app may be able to capture keyboard events from the lock screen Description: This issue was addressed through improved state management.

CVE-2024-45306 [MEDIUM] CVE-2024-45306: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-45306 Component: CVE-2024-45306

CVE-2024-54475 [LOW] CVE-2024-54475: macOSVentura13.7.2 Apple Security Update: About the security content of macOSVentura13.7.2 Product: macOSVentura13.7.2 CVE: CVE-2024-54475 Component: System Settings Impact: An app may be able to determine a user’s current location Description: A privacy issue was addressed with improved private data redaction for log entries.