vulnerability

OS X update for Disk Management (CVE-2024-40828)

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Jul 29, 2024

Added

Jul 31, 2024

Modified

Apr 6, 2026

Description

The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. A malicious app may be able to gain root privileges.

Solution

apple-osx-upgrade-12_7_6

References

CVE-2024-40828
https://attackerkb.com/topics/CVE-2024-40828
CWE-281
EUVD-EUVD-2024-38666
https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-38666
https://support.apple.com/en-us/120910

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report