- 140/2024
- High
Apple has released security updates to address multiple vulnerabilities across macOS Ventura, macOS Monterey, macOS Sonoma, and Safari.
he addressed vulnerabilities could allow a local attacker to gain elevated privileges, bypass security restrictions, obtain information, or gain access to the affected systems.
Sample of the addressed vulnerabilities:
1. Apple macOS Sonoma Privilege Escalation Vulnerability (CVE-2024-27796):
- CVSS: 7.8
- Attack Vector: Local
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: Required
- Consequences: Gain Privileges
2. Apple macOS Sonoma Code Execution Vulnerability (CVE-2024-27818):
- CVSS: 7.8
- Attack Vector: Local
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: Required
- Consequences: Gain Access
Vulnerabilities
Mitigations
The enterprise should deploy this patch as soon as the testing phase is completed.