CVE-2024-23236: An app may be able to read arbitrary files in Apple macOS
CVE-2024-23236 is a vulnerability in Apple macOS Sonoma that allows an app to read arbitrary files due to a correctness issue. This flaw was addressed by Apple through improved checks in macOS Sonoma 14. 5, released on May 13, 2024. The vulnerability has a CVSS score of 5. 5 (medium severity) and does not require user privileges but does require user interaction. There are no known exploits in the wild. The issue affects local applications attempting to access files they should not be able to read.
AI Analysis
Technical Summary
CVE-2024-23236 is a correctness vulnerability in the CFNetwork component of macOS Sonoma that could allow an application to read arbitrary files. Apple fixed this issue in macOS Sonoma 14.5 by implementing improved validation checks. The vulnerability has a CVSS 3.1 base score of 5.5, with attack vector local, low attack complexity, no privileges required, user interaction required, scope unchanged, and high impact on confidentiality. The vendor advisory confirms the fix is included in macOS Sonoma 14.5.
Potential Impact
An attacker with the ability to run an app locally and with user interaction could exploit this vulnerability to read arbitrary files on the affected macOS system, potentially exposing sensitive information. There is no indication of impact on integrity or availability. No known exploits are reported in the wild at this time.
Mitigation Recommendations
Apple has released an official fix for this vulnerability in macOS Sonoma 14.5. Users and administrators should update affected systems to macOS Sonoma 14.5 or later to remediate this issue. No additional mitigation steps are indicated by the vendor advisory.
CVE-2024-23236: An app may be able to read arbitrary files in Apple macOS
Description
CVE-2024-23236 is a vulnerability in Apple macOS Sonoma that allows an app to read arbitrary files due to a correctness issue. This flaw was addressed by Apple through improved checks in macOS Sonoma 14. 5, released on May 13, 2024. The vulnerability has a CVSS score of 5. 5 (medium severity) and does not require user privileges but does require user interaction. There are no known exploits in the wild. The issue affects local applications attempting to access files they should not be able to read.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2024-23236 is a correctness vulnerability in the CFNetwork component of macOS Sonoma that could allow an application to read arbitrary files. Apple fixed this issue in macOS Sonoma 14.5 by implementing improved validation checks. The vulnerability has a CVSS 3.1 base score of 5.5, with attack vector local, low attack complexity, no privileges required, user interaction required, scope unchanged, and high impact on confidentiality. The vendor advisory confirms the fix is included in macOS Sonoma 14.5.
Potential Impact
An attacker with the ability to run an app locally and with user interaction could exploit this vulnerability to read arbitrary files on the affected macOS system, potentially exposing sensitive information. There is no indication of impact on integrity or availability. No known exploits are reported in the wild at this time.
Mitigation Recommendations
Apple has released an official fix for this vulnerability in macOS Sonoma 14.5. Users and administrators should update affected systems to macOS Sonoma 14.5 or later to remediate this issue. No additional mitigation steps are indicated by the vendor advisory.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- apple
- Date Reserved
- 2024-01-12T22:22:21.480Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69ceb81de6bfc5ba1df6e1a8
Added to database: 4/2/2026, 6:40:29 PM
Last enriched: 4/9/2026, 11:01:41 PM
Last updated: 5/20/2026, 8:57:03 PM
Views: 34
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.