macOS
macOS 13.7
Official advisory31 CVEs fixed by this release.
- Release date
- 2024-09-16
- End of support
- 2025-09-15 EOL
- CVEs fixed
- 31
- CISA KEV
- 0
- Critical
- 0
- High
- 0
- NVD pending
- 31
CVEs fixed
| CVE | Severity | KEV | Published | Description |
|---|---|---|---|---|
|
CVE-2024-27876
[Apple Compression] Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files |
N/A | — | [Apple Compression] Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files | |
|
CVE-2024-27886
[Apple AppKit] An unprivileged app may be able to log keystrokes in other apps including those using secure input mode |
N/A | — | [Apple AppKit] An unprivileged app may be able to log keystrokes in other apps including those using secure input mode | |
|
CVE-2024-40791
[Apple Mail Accounts] An app may be able to access information about a user's contacts |
N/A | — | [Apple Mail Accounts] An app may be able to access information about a user's contacts | |
|
CVE-2024-40797
[Apple Safari] Visiting a malicious website may lead to user interface spoofing |
N/A | — | [Apple Safari] Visiting a malicious website may lead to user interface spoofing | |
|
CVE-2024-40814
[Apple AppleMobileFileIntegrity] An app may be able to bypass Privacy preferences |
N/A | — | [Apple AppleMobileFileIntegrity] An app may be able to bypass Privacy preferences | |
|
CVE-2024-40844
[Apple Shortcuts] An app may be able to observe data displayed to the user by Shortcuts |
N/A | — | [Apple Shortcuts] An app may be able to observe data displayed to the user by Shortcuts | |
|
CVE-2024-40847
[Apple AppleMobileFileIntegrity] An app may be able to access sensitive user data |
N/A | — | [Apple AppleMobileFileIntegrity] An app may be able to access sensitive user data | |
|
CVE-2024-40848
[Apple AppleMobileFileIntegrity] An attacker may be able to read sensitive information |
N/A | — | [Apple AppleMobileFileIntegrity] An attacker may be able to read sensitive information | |
|
CVE-2024-40850
[Apple Game Center] An app may be able to access user-sensitive data |
N/A | — | [Apple Game Center] An app may be able to access user-sensitive data | |
|
CVE-2024-44128
[Apple Automator] An Automator Quick Action workflow may be able to bypass Gatekeeper |
N/A | — | [Apple Automator] An Automator Quick Action workflow may be able to bypass Gatekeeper | |
|
CVE-2024-44129
[Apple Accounts] An app may be able to leak sensitive user information |
N/A | — | [Apple Accounts] An app may be able to leak sensitive user information | |
|
CVE-2024-44151
[Apple bless] An app may be able to modify protected parts of the file system |
N/A | — | [Apple bless] An app may be able to modify protected parts of the file system | |
|
CVE-2024-44158
[Apple Shortcuts] A shortcut may output sensitive user data without consent |
N/A | — | [Apple Shortcuts] A shortcut may output sensitive user data without consent | |
|
CVE-2024-44160
[Apple Intel Graphics Driver] Processing a maliciously crafted texture may lead to unexpected app termination |
N/A | — | [Apple Intel Graphics Driver] Processing a maliciously crafted texture may lead to unexpected app termination | |
|
CVE-2024-44161
[Apple Intel Graphics Driver] Processing a maliciously crafted texture may lead to unexpected app termination |
N/A | — | [Apple Intel Graphics Driver] Processing a maliciously crafted texture may lead to unexpected app termination | |
|
CVE-2024-44163
[Apple Sandbox] A malicious application may be able to access private information |
N/A | — | [Apple Sandbox] A malicious application may be able to access private information | |
|
CVE-2024-44164
[Apple AppleMobileFileIntegrity] An app may be able to bypass Privacy preferences |
N/A | — | [Apple AppleMobileFileIntegrity] An app may be able to bypass Privacy preferences | |
|
CVE-2024-44165
[Apple Kernel] Network traffic may leak outside a VPN tunnel |
N/A | — | [Apple Kernel] Network traffic may leak outside a VPN tunnel | |
|
CVE-2024-44166
[Apple System Settings] An app may be able to access user-sensitive data |
N/A | — | [Apple System Settings] An app may be able to access user-sensitive data | |
|
CVE-2024-44167
[Apple Notes] An app may be able to overwrite arbitrary files |
N/A | — | [Apple Notes] An app may be able to overwrite arbitrary files | |
|
CVE-2024-44168
[Apple AppleMobileFileIntegrity] An app may be able to modify protected parts of the file system |
N/A | — | [Apple AppleMobileFileIntegrity] An app may be able to modify protected parts of the file system | |
|
CVE-2024-44169
[Apple IOSurfaceAccelerator] An app may be able to cause unexpected system termination |
N/A | — | [Apple IOSurfaceAccelerator] An app may be able to cause unexpected system termination | |
|
CVE-2024-44176
[Apple ImageIO] Processing an image may lead to a denial-of-service |
N/A | — | [Apple ImageIO] Processing an image may lead to a denial-of-service | |
|
CVE-2024-44177
[Apple Dock] An app may be able to access user-sensitive data |
N/A | — | [Apple Dock] An app may be able to access user-sensitive data | |
|
CVE-2024-44178
[Apple PackageKit] An app may be able to modify protected parts of the file system |
N/A | — | [Apple PackageKit] An app may be able to modify protected parts of the file system | |
|
CVE-2024-44181
[Apple Maps] An app may be able to read sensitive location information |
N/A | — | [Apple Maps] An app may be able to read sensitive location information | |
|
CVE-2024-44182
[Apple App Intents] An app may be able to access sensitive data logged when a shortcut fails to launch another app |
N/A | — | [Apple App Intents] An app may be able to access sensitive data logged when a shortcut fails to launch another app | |
|
CVE-2024-44183
[Apple mDNSResponder] An app may be able to cause a denial-of-service |
N/A | — | [Apple mDNSResponder] An app may be able to cause a denial-of-service | |
|
CVE-2024-44184
[Apple Transparency] An app may be able to access user-sensitive data |
N/A | — | [Apple Transparency] An app may be able to access user-sensitive data | |
|
CVE-2024-44190
[Apple System Settings] An app may be able to read arbitrary files |
N/A | — | [Apple System Settings] An app may be able to read arbitrary files | |
|
CVE-2024-54469
[Apple FileProvider] A local user may be able to leak sensitive user information |
N/A | — | [Apple FileProvider] A local user may be able to leak sensitive user information |