CVE-2024-54536: An app may be able to edit NVRAM variables in Apple macOS
CVE-2024-54536 is a medium severity vulnerability in Apple macOS where an application with limited privileges may be able to edit NVRAM variables. The issue was addressed by Apple through improved validation of environment variables and fixed in macOS Sequoia 15. 2. This vulnerability does not impact confidentiality or availability but can affect the integrity of system settings stored in NVRAM. There are no known exploits in the wild at this time.
AI Analysis
Technical Summary
This vulnerability allows an application with local privileges to modify NVRAM variables due to insufficient validation of environment variables. Apple fixed the issue in macOS Sequoia 15.2 by enhancing validation mechanisms to prevent unauthorized modification of NVRAM. The CVSS 3.1 base score is 5.5, reflecting a medium severity with local attack vector, low complexity, and no user interaction required. The impact is limited to integrity, with no confidentiality or availability impact reported.
Potential Impact
An attacker with local privileges could modify NVRAM variables, potentially altering system behavior or configuration. This does not affect confidentiality or availability but compromises the integrity of system settings stored in NVRAM. No known exploits have been reported in the wild.
Mitigation Recommendations
Apply the official fix by updating to macOS Sequoia 15.2 or later, where the vulnerability has been addressed through improved validation of environment variables. Since a patch is available, updating the system is the recommended remediation.
CVE-2024-54536: An app may be able to edit NVRAM variables in Apple macOS
Description
CVE-2024-54536 is a medium severity vulnerability in Apple macOS where an application with limited privileges may be able to edit NVRAM variables. The issue was addressed by Apple through improved validation of environment variables and fixed in macOS Sequoia 15. 2. This vulnerability does not impact confidentiality or availability but can affect the integrity of system settings stored in NVRAM. There are no known exploits in the wild at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability allows an application with local privileges to modify NVRAM variables due to insufficient validation of environment variables. Apple fixed the issue in macOS Sequoia 15.2 by enhancing validation mechanisms to prevent unauthorized modification of NVRAM. The CVSS 3.1 base score is 5.5, reflecting a medium severity with local attack vector, low complexity, and no user interaction required. The impact is limited to integrity, with no confidentiality or availability impact reported.
Potential Impact
An attacker with local privileges could modify NVRAM variables, potentially altering system behavior or configuration. This does not affect confidentiality or availability but compromises the integrity of system settings stored in NVRAM. No known exploits have been reported in the wild.
Mitigation Recommendations
Apply the official fix by updating to macOS Sequoia 15.2 or later, where the vulnerability has been addressed through improved validation of environment variables. Since a patch is available, updating the system is the recommended remediation.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- apple
- Date Reserved
- 2024-12-03T22:50:35.511Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69ceb833e6bfc5ba1df6ee43
Added to database: 4/2/2026, 6:40:51 PM
Last enriched: 4/9/2026, 11:35:07 PM
Last updated: 5/20/2026, 8:14:33 PM
Views: 53
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.