A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to modify protected parts of the file system.
Metrics
Affected Vendors & Products
References
History
Wed, 11 Dec 2024 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apple macos
|
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | |
Vendors & Products |
Apple macos
|
Wed, 30 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apple
Apple mac Os |
|
CPEs | cpe:2.3:o:apple:mac_os:*:*:*:*:*:*:*:* | |
Vendors & Products |
Apple
Apple mac Os |
|
Metrics |
cvssV3_1
|
Mon, 28 Oct 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to modify protected parts of the file system. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2024-10-28T21:07:46.325Z
Updated: 2024-11-01T03:55:43.661Z
Reserved: 2024-08-20T21:45:40.790Z
Link: CVE-2024-44280
Vulnrichment
Updated: 2024-10-30T14:36:12.278Z
NVD
Status : Analyzed
Published: 2024-10-28T21:15:08.180
Modified: 2024-12-11T17:36:38.283
Link: CVE-2024-44280
Redhat
No data.