7.8
CVE-2024-27826
- EPSS 0.26%
- Veröffentlicht 29.07.2024 23:15:10
- Zuletzt bearbeitet 02.04.2026 19:17:25
- Quelle product-security@apple.com
- CVE-Watchlists
- Unerledigt
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.6, macOS Sonoma 14.5, macOS Ventura 13.6.8, tvOS 17.5, visionOS 1.3, watchOS 10.5. A local attacker may be able to cause unexpected system shutdown.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.26% | 0.171 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
CWE-269 Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
http://seclists.org/fulldisclosure/2024/Jul/19
http://seclists.org/fulldisclosure/2024/Jul/20
http://seclists.org/fulldisclosure/2024/Jul/23
https://support.apple.com/kb/HT214118
https://support.apple.com/kb/HT214120
https://support.apple.com/kb/HT214123
https://support.apple.com/kb/HT214101
https://support.apple.com/kb/HT214106
https://support.apple.com/en-us/HT214106
https://support.apple.com/en-us/HT214101
https://support.apple.com/en-us/HT214102
https://support.apple.com/en-us/HT214104
https://support.apple.com/kb/HT214102
https://support.apple.com/kb/HT214104
https://support.apple.com/en-us/HT214118
https://support.apple.com/en-us/HT214120
https://support.apple.com/en-us/HT214123
https://support.apple.com/en-us/120915
https://support.apple.com/en-us/120910
https://support.apple.com/en-us/120912
https://support.apple.com/en-us/120901
https://support.apple.com/en-us/120902
https://support.apple.com/en-us/120903
https://support.apple.com/en-us/120905