CVE-2024-44196

Exploited in the Wild

NIST CVSS Scores

CVSS v3.1 Base Score: 5.5 (Medium)

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CISA CVSS Scores

CVSS v3.1 Base Score: 7.5 (High)

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Operating Systems Impacted

macOS Sonoma (prior to 14.7.1)
macOS Ventura (prior to 13.7.1)

Additional Resources

NVD CVE-2024-44196
macOS Sonoma 14.7.1
macOS Ventura 13.7.1

Description

CVE-2024-44196 is a permissions issue within Apple's PackageKit framework that could allow an application to modify protected parts of the file system.

Impact

Exploitation of this vulnerability could lead to unauthorized modification of protected file system areas by an application. The severity of this issue has been assessed as follows: