A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. Running a mount command may unexpectedly execute arbitrary code.
Metrics
Affected Vendors & Products
References
History
Fri, 13 Dec 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-22 | |
Metrics |
cvssV3_1
|
ssvc
|
Fri, 13 Dec 2024 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apple
Apple macos |
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | |
Vendors & Products |
Apple
Apple macos |
|
Metrics |
cvssV3_1
|
Wed, 11 Dec 2024 23:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. Running a mount command may unexpectedly execute arbitrary code. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2024-12-11T22:59:19.485Z
Updated: 2024-12-13T18:18:00.800Z
Reserved: 2024-12-03T22:50:35.497Z
Link: CVE-2024-54489
Vulnrichment
Updated: 2024-12-13T18:17:52.334Z
NVD
Status : Modified
Published: 2024-12-12T02:15:30.097
Modified: 2024-12-13T19:15:09.570
Link: CVE-2024-54489
Redhat
No data.