CVE-2024-40774: 
macOS vulnerability analysis and mitigation

CVE-2024-40774 is a security vulnerability affecting multiple Apple operating systems including macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6, iPadOS 17.6, watchOS 10.6, tvOS 17.6, and macOS Sonoma 14.6. The vulnerability was discovered by Mickey Jin (@patch1t) and disclosed on July 29, 2024. It exists in the AppleMobileFileIntegrity component where a downgrade issue could allow an app to bypass Privacy preferences (Apple Security).

The vulnerability is a downgrade issue in the AppleMobileFileIntegrity component that was addressed with additional code-signing restrictions. The issue has been assigned a CVSS v3.1 base score of 7.1 (HIGH) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N. Additionally, CISA-ADP assigned it a base score of 5.9 (MEDIUM) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N (NVD).

The primary impact of this vulnerability is that a malicious application may be able to bypass Privacy preferences on affected systems. This could potentially allow unauthorized access to private user information (Apple Security).

Apple has addressed this vulnerability by implementing additional code-signing restrictions in the following updates: macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6, iPadOS 17.6, watchOS 10.6, tvOS 17.6, and macOS Sonoma 14.6. Users are advised to update their devices to these versions to protect against this vulnerability (Apple Security).