CVE-2024-44175

Description

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1. An app may be able to access sensitive user data.

PUBLISHED Reserved 2024-08-20 | Published 2024-10-28 | Updated 2026-04-02 | Assigner apple

Problem types

An app may be able to access sensitive user data

Product status

References

seclists.org/fulldisclosure/2024/Oct/12

support.apple.com/en-us/121238

support.apple.com/en-us/121570

cve.org (CVE-2024-44175)

nvd.nist.gov (CVE-2024-44175)

Download JSON