An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An encrypted volume may be accessed by a different user without prompting for the password.
History

Wed, 18 Dec 2024 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos

Thu, 12 Dec 2024 22:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-862
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 11 Dec 2024 23:15:00 +0000

Type Values Removed Values Added
Description An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An encrypted volume may be accessed by a different user without prompting for the password.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2024-12-11T22:59:20.129Z

Updated: 2024-12-12T21:33:31.412Z

Reserved: 2024-12-03T22:50:35.493Z

Link: CVE-2024-54466

cve-icon Vulnrichment

Updated: 2024-12-12T21:33:27.004Z

cve-icon NVD

Status : Analyzed

Published: 2024-12-12T02:15:29.330

Modified: 2024-12-18T17:59:28.667

Link: CVE-2024-54466

cve-icon Redhat

No data.