CVE-2024-44133

MEDIUM

macOS Sequoia - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-44133. PoCs published by yo-yo-yo-jbo.

AI-analyzed exploit summary This repository contains a functional evaluator for CVE-2024-44133, which assesses TCC (Transparency, Consent, and Control) bypass vulnerabilities in macOS browsers. It includes an HTML file demonstrating the vulnerability by accessing camera, microphone, and location data, along with a Python-based evaluator that checks browser susceptibility.

Description

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15. On MDM managed devices, an app may be able to bypass certain Privacy preferences.

Exploits (1)

nomisec WORKING POC 9 stars
by yo-yo-yo-jbo · poc
https://github.com/yo-yo-yo-jbo/hm-surf

This repository contains a functional evaluator for CVE-2024-44133, which assesses TCC (Transparency, Consent, and Control) bypass vulnerabilities in macOS browsers. It includes an HTML file demonstrating the vulnerability by accessing camera, microphone, and location data, along with a Python-based evaluator that checks browser susceptibility.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: macOS browsers (Safari, Chrome, Firefox, Edge, Brave, Opera, Vivaldi)
No auth needed
Prerequisites: Local access to macOS system · Browser preferences manipulation capability
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 5.5
EPSS 0.0705
EPSS Percentile 93.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

Status published
Products (2)
Apple/macOS < 15
apple/macos < 15.0
Published Sep 17, 2024
Tracked Since Feb 18, 2026