CVE-2024-23244 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-23244

CWE

https://cwe.mitre.org/data/definitions/.html

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4. An app from a standard user account may be able to escalate privilege after admin user login.

Affected Software

Name	Vendor	Start Version	End Version
Macos	Apple	12.0 (including)	12.7.4 (excluding)
Macos	Apple	14.0 (including)	14.4 (excluding)

References

http://seclists.org/fulldisclosure/2024/Mar/21
http://seclists.org/fulldisclosure/2024/Mar/23
https://support.apple.com/en-us/HT214083
https://support.apple.com/en-us/HT214084
http://seclists.org/fulldisclosure/2024/Mar/21
http://seclists.org/fulldisclosure/2024/Mar/23
https://support.apple.com/en-us/HT214083
https://support.apple.com/en-us/HT214084
https://support.apple.com/kb/HT214083
https://support.apple.com/kb/HT214084