CVE-2024-27796 - Vulnerability Details - OpenCVE

ReportizFlow

The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An attacker may be able to elevate privileges.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apple	Ipados Iphone Os Macos

Configuration 1 [-]

OR	cpe:2.3:o:apple:ipados::::::::
	cpe:2.3:o:apple:ipados::::::::
	cpe:2.3:o:apple:iphone_os::::::::
	cpe:2.3:o:apple:iphone_os::::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::

No data.

References

Link	Providers
http://seclists.org/fulldisclosure/2024/May/10
http://seclists.org/fulldisclosure/2024/May/12
https://support.apple.com/en-us/HT214101
https://support.apple.com/en-us/HT214106
https://support.apple.com/kb/HT214100
https://support.apple.com/kb/HT214101
https://support.apple.com/kb/HT214105
https://support.apple.com/kb/HT214106
https://support.apple.com/kb/HT214107

History

Mon, 09 Dec 2024 19:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple ipados Apple iphone Os Apple macos
Weaknesses		NVD-CWE-noinfo
CPEs		cpe:2.3:o:apple:ipados:::::::: cpe:2.3:o:apple:iphone_os:::::::: cpe:2.3:o:apple:macos::::::::
Vendors & Products		Apple Apple ipados Apple iphone Os Apple macos
Metrics	cvssV3_1 `{'score': 8.1, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H'}`	cvssV3_1 `{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: apple

Published: 2024-05-13T23:00:54.914Z

Updated: 2024-08-02T00:41:55.404Z

Reserved: 2024-02-26T15:32:28.515Z

Link: CVE-2024-27796

Vulnrichment

Updated: 2024-08-02T00:41:55.404Z

NVD

Status : Analyzed

Published: 2024-05-14T15:13:03.243

Modified: 2024-12-09T19:22:11.867

Link: CVE-2024-27796

Redhat

No data.

{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2024-27796", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "state": "PUBLISHED", "assignerShortName": "apple", "dateReserved": "2024-02-26T15:32:28.515Z", "datePublished": "2024-05-13T23:00:54.914Z", "dateUpdated": "2024-08-02T00:41:55.404Z"}, "containers": {"cna": {"problemTypes": [{"descriptions": [{"lang": "en", "description": "An attacker may be able to elevate privileges"}]}], "affected": [{"vendor": "Apple", "product": "iOS and iPadOS", "versions": [{"version": "unspecified", "status": "affected", "lessThan": "17.5", "versionType": "custom"}]}, {"vendor": "Apple", "product": "macOS", "versions": [{"version": "unspecified", "status": "affected", "lessThan": "14.5", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An attacker may be able to elevate privileges."}], "references": [{"url": "https://support.apple.com/en-us/HT214101"}, {"url": "https://support.apple.com/en-us/HT214106"}, {"url": "https://support.apple.com/kb/HT214107"}, {"url": "http://seclists.org/fulldisclosure/2024/May/10"}, {"url": "https://support.apple.com/kb/HT214105"}, {"url": "https://support.apple.com/kb/HT214100"}, {"url": "https://support.apple.com/kb/HT214106"}, {"url": "http://seclists.org/fulldisclosure/2024/May/12"}, {"url": "https://support.apple.com/kb/HT214101"}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2024-05-13T23:00:54.914Z"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2024-27796", "role": "CISA Coordinator", "options": [{"Exploitation": "None"}, {"Automatable": "Yes"}, {"Technical Impact": "Total"}], "version": "2.0.3", "timestamp": "2024-05-16T04:00:13.545424Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:apple:ipad_os:-:*:*:*:*:*:*:*"], "vendor": "apple", "product": "ipad_os", "versions": [{"status": "affected", "version": "-", "lessThan": "17.5", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*"], "vendor": "apple", "product": "iphone_os", "versions": [{"status": "affected", "version": "-", "lessThan": "17.5", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*"], "vendor": "apple", "product": "macos", "versions": [{"status": "affected", "version": "-", "lessThan": "14.5", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1325", "description": "CWE-1325 Improperly Controlled Sequential Memory Allocation"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:47:25.690Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:41:55.404Z"}, "title": "CVE Program Container", "references": [{"url": "https://support.apple.com/en-us/HT214101", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/en-us/HT214106", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214107", "tags": ["x_transferred"]}, {"url": "http://seclists.org/fulldisclosure/2024/May/10", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214105", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214100", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214106", "tags": ["x_transferred"]}, {"url": "http://seclists.org/fulldisclosure/2024/May/12", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214101", "tags": ["x_transferred"]}]}]}, "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://support.apple.com/en-us/HT214101", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/en-us/HT214106", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214107", "tags": ["x_transferred"]}, {"url": "http://seclists.org/fulldisclosure/2024/May/10", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214105", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214100", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214106", "tags": ["x_transferred"]}, {"url": "http://seclists.org/fulldisclosure/2024/May/12", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/kb/HT214101", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:41:55.404Z"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2024-27796", "role": "CISA Coordinator", "options": [{"Exploitation": "None"}, {"Automatable": "Yes"}, {"Technical Impact": "Total"}], "version": "2.0.3", "timestamp": "2024-05-16T04:00:13.545424Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:apple:ipad_os:-:*:*:*:*:*:*:*"], "vendor": "apple", "product": "ipad_os", "versions": [{"status": "affected", "version": "-", "lessThan": "17.5", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*"], "vendor": "apple", "product": "iphone_os", "versions": [{"status": "affected", "version": "-", "lessThan": "17.5", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*"], "vendor": "apple", "product": "macos", "versions": [{"status": "affected", "version": "-", "lessThan": "14.5", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1325", "description": "CWE-1325 Improperly Controlled Sequential Memory Allocation"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-16T13:20:02.424Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"affected": [{"vendor": "Apple", "product": "iOS and iPadOS", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "17.5", "versionType": "custom"}]}, {"vendor": "Apple", "product": "macOS", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "14.5", "versionType": "custom"}]}], "references": [{"url": "https://support.apple.com/en-us/HT214101"}, {"url": "https://support.apple.com/en-us/HT214106"}, {"url": "https://support.apple.com/kb/HT214107"}, {"url": "http://seclists.org/fulldisclosure/2024/May/10"}, {"url": "https://support.apple.com/kb/HT214105"}, {"url": "https://support.apple.com/kb/HT214100"}, {"url": "https://support.apple.com/kb/HT214106"}, {"url": "http://seclists.org/fulldisclosure/2024/May/12"}, {"url": "https://support.apple.com/kb/HT214101"}], "descriptions": [{"lang": "en", "value": "The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An attacker may be able to elevate privileges."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "An attacker may be able to elevate privileges"}]}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2024-05-13T23:00:54.914Z"}}}, "cveMetadata": {"cveId": "CVE-2024-27796", "state": "PUBLISHED", "dateUpdated": "2024-08-02T00:41:55.404Z", "dateReserved": "2024-02-26T15:32:28.515Z", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "datePublished": "2024-05-13T23:00:54.914Z", "assignerShortName": "apple"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "matchCriteriaId": "732206AE-D798-41FB-8D91-F796820F912D", "versionEndExcluding": "16.7.8", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "matchCriteriaId": "0C520138-1984-4369-8615-09FF57F0BB70", "versionEndExcluding": "17.5", "versionStartIncluding": "17.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "matchCriteriaId": "0EDF6AF0-A238-47E5-9A9D-F6FDB832DD8C", "versionEndExcluding": "16.7.8", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "matchCriteriaId": "DEC0ACF3-F486-4536-8415-A176C68CE183", "versionEndExcluding": "17.5", "versionStartIncluding": "17.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "matchCriteriaId": "03438F98-D6C4-4CA6-840D-2633E8A88F68", "versionEndExcluding": "12.7.5", "versionStartIncluding": "12.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "matchCriteriaId": "2D797210-B0F0-44AE-9028-47C18C22AFA5", "versionEndExcluding": "13.6.7", "versionStartIncluding": "13.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "matchCriteriaId": "6AB18623-7D06-4946-99FC-808A4A913ED9", "versionEndExcluding": "14.5", "versionStartIncluding": "14.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An attacker may be able to elevate privileges."}, {"lang": "es", "value": "El problema se solucion\u00f3 con controles mejorados. Este problema se solucion\u00f3 en iOS 17.5 y iPadOS 17.5, macOS Sonoma 14.5. Un atacante puede aumentar los privilegios."}], "id": "CVE-2024-27796", "lastModified": "2024-12-09T19:22:11.867", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "[email protected]", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.4, "impactScore": 6.0, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-05-14T15:13:03.243", "references": [{"source": "[email protected]", "tags": ["Mailing List"], "url": "http://seclists.org/fulldisclosure/2024/May/10"}, {"source": "[email protected]", "tags": ["Mailing List"], "url": "http://seclists.org/fulldisclosure/2024/May/12"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT214101"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT214106"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214100"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214101"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214105"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214106"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214107"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "http://seclists.org/fulldisclosure/2024/May/10"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "http://seclists.org/fulldisclosure/2024/May/12"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT214101"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT214106"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214100"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214101"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214105"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214106"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/kb/HT214107"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "[email protected]", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-1325"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}