CVE-2024-27886

HIGH Year: 2024
CVSS v3 Score
7.5
High
Weakness Type
CWE-783
View all →

Vulnerability Description

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode.

Related Vulnerabilities

CVE-2024-34720

HIGH
CVSS:7.4(High)

In com_android_internal_os_ZygoteCommandBuffer_nativeForkRepeatedly of com_android_internal_os_ZygoteCommandBuffer.cpp, there is a possible method to perform arbitrary code execution in any app zygote...

CWE-7832024

CVE-2022-20477

HIGH
CVSS:7.8(High)

In shouldHideNotification of KeyguardNotificationVisibilityProvider.kt, there is a possible way to show hidden notifications due to a logic error in the code. This could lead to local escalation of pr...

CWE-7832022

CVE-2024-31326

HIGH
CVSS:7.8(High)

In multiple locations, there is a possible way in which policy migration code will never be executed due to a logic error in the code. This could lead to local escalation of privilege with no addition...

CWE-7832024

CVE-2024-31331

HIGH
CVSS:7.8(High)

In setMimeGroup of PackageManagerService.java, there is a possible way to hide the service from Settings due to a logic error in the code. This could lead to local escalation of privilege with User ex...

CWE-7832024

CVE-2024-34726

HIGH
CVSS:7.8(High)

In PVRSRV_MMap of pvr_bridge_k.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execu...

CWE-7832024

CVE-2024-31335

HIGH
CVSS:8.4(High)

In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no a...

CWE-7832024