First published: Mon Jan 27 2025(Updated: )
This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.7.2, macOS Sequoia 15.2, macOS Ventura 13.7.2. An app may be able to read and write files outside of its sandbox.
Credit: product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS | ||
Apple macOS |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-54537 is characterized as a moderate severity vulnerability that allows an app to read and write files outside its intended sandbox.
To fix CVE-2024-54537, upgrade to macOS Sonoma 14.7.2, macOS Sequoia 15.2, or macOS Ventura 13.7.2.
CVE-2024-54537 affects macOS Sonoma, macOS Sequoia, and macOS Ventura prior to the specified fixed versions.
CVE-2024-54537 can allow an attacker to access files outside of the app's sandboxed environment.
Users should ensure their systems are updated to the latest macOS versions to mitigate the risks associated with CVE-2024-54537.