An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. Third party app extensions may not receive the correct sandbox restrictions.
References
| Link | Resource |
|---|---|
| http://seclists.org/fulldisclosure/2024/Jul/18 | Mailing List |
| http://seclists.org/fulldisclosure/2024/Jul/19 | Mailing List |
| http://seclists.org/fulldisclosure/2024/Jul/20 | Mailing List |
| https://support.apple.com/en-us/HT214118 | Vendor Advisory |
| https://support.apple.com/en-us/HT214119 | Vendor Advisory |
| https://support.apple.com/en-us/HT214120 | Vendor Advisory |
| http://seclists.org/fulldisclosure/2024/Jul/18 | Mailing List |
| http://seclists.org/fulldisclosure/2024/Jul/19 | Mailing List |
| http://seclists.org/fulldisclosure/2024/Jul/20 | Mailing List |
| https://support.apple.com/en-us/HT214118 | Vendor Advisory |
| https://support.apple.com/en-us/HT214119 | Vendor Advisory |
| https://support.apple.com/en-us/HT214120 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
10 Dec 2024, 14:47
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.1 |
| First Time |
Apple
Apple macos |
|
| CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | |
| CWE | NVD-CWE-noinfo | |
| References | () http://seclists.org/fulldisclosure/2024/Jul/18 - Mailing List | |
| References | () http://seclists.org/fulldisclosure/2024/Jul/19 - Mailing List | |
| References | () http://seclists.org/fulldisclosure/2024/Jul/20 - Mailing List | |
| References | () https://support.apple.com/en-us/HT214118 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT214119 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT214120 - Vendor Advisory |
Information
Published : 2024-07-29 23:15
Updated : 2024-12-10 14:47
NVD link : CVE-2024-40821
Mitre link : CVE-2024-40821
CVE.ORG link : CVE-2024-40821
JSON object : View
Products Affected
apple
- macos
CWE