CVE-2024-27834

HIGH Year: 2024
CVSS v3 Score
8.1
High
Weakness Type
CWE-277
View all →

Vulnerability Description

The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.

Related Vulnerabilities

CVE-2020-5343

HIGH
CVSS:7.8(High)

Dell Client platforms restored using a Dell OS recovery image downloaded before December 20, 2019, may contain an insecure inherited permissions vulnerability. A local authenticated malicious user wit...

CWE-2772020

CVE-2022-33898

HIGH
CVSS:7.8(High)

Insecure inherited permissions in some Intel(R) NUC Watchdog Timer installation software before version 2.0.21.0 may allow an authenticated user to potentially enable escalation of privilege via local...

CWE-2772022

CVE-2022-36377

HIGH
CVSS:7.8(High)

Insecure inherited permissions in some Intel(R) Wireless Adapter Driver installation software for Intel(R) NUC Kits & Mini PCs before version 22.190.0.3 for Windows may allow an authenticated user to ...

CWE-2772022

CVE-2022-38103

HIGH
CVSS:7.8(High)

Insecure inherited permissions in the Intel(R) NUC Software Studio Service installer before version 1.17.38.0 may allow an authenticated user to potentially enable escalation of privilege via local ac...

CWE-2772022

CVE-2022-41658

HIGH
CVSS:7.8(High)

Insecure inherited permissions in the Intel(R) VTune(TM) Profiler software before version 2023.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

CWE-2772022

CVE-2022-41687

HIGH
CVSS:7.8(High)

Insecure inherited permissions in the HotKey Services for some Intel(R) NUC P14E Laptop Element software for Windows 10 before version 1.1.44 may allow an authenticated user to potentially enable esca...

CWE-2772022