This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma 14.4. An app may be able to create symlinks to protected regions of the disk.
History

Sat, 07 Dec 2024 03:30:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Weaknesses CWE-59
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N'}


Tue, 27 Aug 2024 22:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-61
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2024-03-08T01:35:31.663Z

Updated: 2024-08-27T20:20:42.533Z

Reserved: 2024-01-12T22:22:21.499Z

Link: CVE-2024-23285

cve-icon Vulnrichment

Updated: 2024-08-01T22:59:32.157Z

cve-icon NVD

Status : Analyzed

Published: 2024-03-08T02:15:49.930

Modified: 2024-12-07T03:15:00.420

Link: CVE-2024-23285

cve-icon Redhat

No data.