OS X update for PackageKit (CVE-2024-27882)

OS X update for PackageKit (CVE-2024-27882)

Severity

3

CVSS

(AV:L/AC:L/Au:S/C:P/I:P/A:N)

Published

07/29/2024

Created

07/31/2024

Added

07/31/2024

Modified

01/28/2025

Description

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to modify protected parts of the file system.

Solution(s)

• apple-osx-upgrade-12_7_6
• apple-osx-upgrade-13_6_8
• apple-osx-upgrade-14_6

References

• https://attackerkb.com/topics/cve-2024-27882
• CVE - 2024-27882
• https://support.apple.com/en-us/120910
• https://support.apple.com/en-us/120911
• https://support.apple.com/en-us/120912