CVE-2024-44286

Summary

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.1. An attacker with physical access can input keyboard events to apps running on a locked device.

Affected Software

VendorProductVersion RangeStatus
ApplemacOS0 < 15.1affected

Weaknesses

  • An attacker with physical access can input keyboard events to apps running on a locked device

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References