CVE-2024-54498: A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2....

0.0 CVSS

Description

A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An app may be able to break out of its sandbox.

Classification

CVE ID: CVE-2024-54498

CVSS Base Severity: LOW

CVSS Base Score: 0.0

Affected Products

Vendor: Apple

Product: macOS

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.11% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://support.apple.com/en-us/121839
https://support.apple.com/en-us/121842
https://support.apple.com/en-us/121840

Timeline

2024-12-12 00:31:41 UTC
CVE

A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2....