CVE-2024-27799
LOWDescription
This issue was addressed with additional entitlement checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode.
CVSS v3.1 Score
Affected Products
| Vendor | Product |
|---|---|
| apple | ipados |
| apple | iphone_os |
| apple | macos |
| apple | macos |
| apple | macos |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2024-27799? +
How severe is CVE-2024-27799? +
What products are affected by CVE-2024-27799? +
How do I check if I'm vulnerable to CVE-2024-27799? +
Related Vulnerabilities
A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15. An app may …
This issue was addressed with improved validation of file attributes. This issue is fixed in macOS Sequoia 15. An app …
Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer …
An out-of-bounds write issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Safari 18.3.1, …
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.3 and iPadOS …
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.8.5 and iPadOS 15.8.5, …