CVE-2024-27881: An app may be able to access information about a user’s contacts in Apple macOS
CVE-2024-27881 is a privacy vulnerability in Apple macOS that could allow an app to access information about a user’s contacts due to insufficient private data redaction in log entries. This issue affects multiple macOS versions including Monterey 12. 7. 6, Ventura 13. 6. 8, and Sonoma 14. 6. Apple addressed the vulnerability by improving private data redaction and applying additional sandbox restrictions to prevent unauthorized access. The vulnerability has a CVSS score of 5. 3 (medium severity) and does not have known exploits in the wild at the time of disclosure.
AI Analysis
Technical Summary
CVE-2024-27881 is a privacy issue in macOS where an application may be able to access a user’s contacts due to inadequate redaction of private data in system log entries. The vulnerability was addressed by Apple through improved private data redaction and enhanced sandbox restrictions on third-party app extensions. The fix is included in macOS Monterey 12.7.6, macOS Ventura 13.6.8, and macOS Sonoma 14.6. The CVSS 3.1 base score is 5.3, reflecting a network attack vector with low complexity and no privileges or user interaction required, resulting in limited confidentiality impact. No known exploits are reported in the wild.
Potential Impact
A malicious or unauthorized application could potentially access contact information of the user, leading to privacy violations. The impact is limited to confidentiality as there is no indication of integrity or availability compromise. The vulnerability does not require user interaction or privileges, increasing the risk of exploitation. However, no active exploitation has been reported.
Mitigation Recommendations
Apple has released official patches for this vulnerability in macOS Monterey 12.7.6, macOS Ventura 13.6.8, and macOS Sonoma 14.6. Users and administrators should apply these updates promptly to remediate the issue. Since the vulnerability is addressed by improved private data redaction and sandbox restrictions, no additional mitigations are necessary beyond applying the official updates.
CVE-2024-27881: An app may be able to access information about a user’s contacts in Apple macOS
Description
CVE-2024-27881 is a privacy vulnerability in Apple macOS that could allow an app to access information about a user’s contacts due to insufficient private data redaction in log entries. This issue affects multiple macOS versions including Monterey 12. 7. 6, Ventura 13. 6. 8, and Sonoma 14. 6. Apple addressed the vulnerability by improving private data redaction and applying additional sandbox restrictions to prevent unauthorized access. The vulnerability has a CVSS score of 5. 3 (medium severity) and does not have known exploits in the wild at the time of disclosure.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2024-27881 is a privacy issue in macOS where an application may be able to access a user’s contacts due to inadequate redaction of private data in system log entries. The vulnerability was addressed by Apple through improved private data redaction and enhanced sandbox restrictions on third-party app extensions. The fix is included in macOS Monterey 12.7.6, macOS Ventura 13.6.8, and macOS Sonoma 14.6. The CVSS 3.1 base score is 5.3, reflecting a network attack vector with low complexity and no privileges or user interaction required, resulting in limited confidentiality impact. No known exploits are reported in the wild.
Potential Impact
A malicious or unauthorized application could potentially access contact information of the user, leading to privacy violations. The impact is limited to confidentiality as there is no indication of integrity or availability compromise. The vulnerability does not require user interaction or privileges, increasing the risk of exploitation. However, no active exploitation has been reported.
Mitigation Recommendations
Apple has released official patches for this vulnerability in macOS Monterey 12.7.6, macOS Ventura 13.6.8, and macOS Sonoma 14.6. Users and administrators should apply these updates promptly to remediate the issue. Since the vulnerability is addressed by improved private data redaction and sandbox restrictions, no additional mitigations are necessary beyond applying the official updates.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- apple
- Date Reserved
- 2024-02-26T15:32:28.543Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 690a3b67ff58c9332ff0a556
Added to database: 11/4/2025, 5:44:07 PM
Last enriched: 4/9/2026, 11:21:37 PM
Last updated: 5/9/2026, 7:24:15 AM
Views: 91
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.