CVE-2024-27817

HIGH Year: 2024
CVSS v3 Score
7.8
High
Weakness Type
CWE-353
View all →

Vulnerability Description

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8, tvOS 17.5, visionOS 1.2, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An app may be able to execute arbitrary code with kernel privileges.

Related Vulnerabilities

CVE-2019-12804

HIGH
CVSS:7.8(High)

In Hunesion i-oneNet version 3.0.7 ~ 3.0.53 and 4.0.4 ~ 4.0.16, due to the lack of update file integrity checking in the upgrade process, an attacker can craft malicious file and use it as an update.

CWE-3532019

CVE-2022-2793

HIGH
CVSS:7.8(High)

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-353 Missing Support for Integrity Check, and has no authentication or authorization of data packets after establi...

CWE-3532022

CVE-2023-32475

HIGH
CVSS:7.6(High)

Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.

CWE-3532023

CVE-2019-10943

HIGH
CVSS:7.5(High)

A vulnerability has been identified in SIMATIC Drive Controller family (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Cont...

CWE-3532019

CVE-2019-11480

HIGH
CVSS:8.1(High)

The pc-kernel snap build process hardcoded the --allow-insecure-repositories and --allow-unauthenticated apt options when creating the build chroot environment. This could allow an attacker who is abl...

CWE-3532019

CVE-2021-28545

HIGH
CVSS:8.1(High)

Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are missing support for an integrity check. An unauthenticated attacker ...

CWE-3532021