CVE-2024-40848

None

Description

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7. An attacker may be able to read sensitive information.

INFO

Published Date :

2024-09-16T23:23:29.232Z

Last Modified :

2026-04-02T18:27:27.691Z

Source :

apple

AFFECTED PRODUCTS

The following products are affected by CVE-2024-40848 vulnerability.

Vendors	Products
Apple	Macos

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-40848.

URL	Resource
http://seclists.org/fulldisclosure/2024/Sep/33
http://seclists.org/fulldisclosure/2024/Sep/40
http://seclists.org/fulldisclosure/2024/Sep/41
https://support.apple.com/en-us/121234
https://support.apple.com/en-us/121238
https://support.apple.com/en-us/121247

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact