{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2024-23272","assignerOrgId":"286789f9-fbc2-4510-9f9a-43facdede74c","state":"PUBLISHED","assignerShortName":"apple","dateReserved":"2024-01-12T22:22:21.498Z","datePublished":"2024-03-08T01:35:54.007Z","dateUpdated":"2026-04-02T18:19:53.263Z"},"containers":{"cna":{"problemTypes":[{"descriptions":[{"lang":"en","description":"An attacker may gain access to protected parts of the file system"}]}],"affected":[{"vendor":"Apple","product":"macOS","versions":[{"version":"0","status":"affected","lessThan":"12.7.4","versionType":"custom"},{"version":"0","status":"affected","lessThan":"13.6.5","versionType":"custom"},{"version":"0","status":"affected","lessThan":"14.4","versionType":"custom"}]}],"descriptions":[{"lang":"en","value":"A logic issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An attacker may gain access to protected parts of the file system."}],"references":[{"url":"https://support.apple.com/en-us/120884"},{"url":"https://support.apple.com/en-us/120886"},{"url":"https://support.apple.com/en-us/120895"}],"providerMetadata":{"orgId":"286789f9-fbc2-4510-9f9a-43facdede74c","shortName":"apple","dateUpdated":"2026-04-02T18:19:53.263Z"}},"adp":[{"problemTypes":[{"descriptions":[{"type":"CWE","lang":"en","description":"CWE-noinfo Not enough information"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":5.5,"attackVector":"LOCAL","baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","integrityImpact":"NONE","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"NONE","privilegesRequired":"LOW","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2025-03-28T19:05:15.066527Z","id":"CVE-2024-23272","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-03-28T19:06:44.418Z"}},{"title":"CVE Program Container","references":[{"url":"https://support.apple.com/en-us/HT214083","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214085","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214084","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Mar/21","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Mar/22","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Mar/23","tags":["x_transferred"]},{"url":"https://support.apple.com/kb/HT214085"},{"url":"https://support.apple.com/kb/HT214084"},{"url":"https://support.apple.com/kb/HT214083"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-04T18:27:06.787Z"}}]}}