CVE-2023-27960

Summary

This issue was addressed by removing the vulnerable code. This issue is fixed in GarageBand for macOS 10.4.8. An app may be able to gain elevated privileges during the installation of GarageBand.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 10.4affected

Weaknesses

  • An app may be able to gain elevated privileges during the installation of GarageBand

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References