Apple Addresses macOS Vulnerability Allowing SIP Bypass
/ 1 min read
🔒🛠️ Apple addresses critical macOS vulnerability allowing SIP bypass. A recently discovered flaw in macOS, tracked as CVE-2024-44243, enables local attackers with root privileges to bypass System Integrity Protection (SIP) and install malicious kernel drivers without physical access. SIP is designed to prevent unauthorized modifications to critical system files, but this vulnerability, found in the Storage Kit daemon, could allow the installation of persistent malware and the circumvention of security checks. Apple has released a patch in the December 11, 2024, update for macOS Sequoia 15.2. Microsoft highlighted the severity of this issue, noting that bypassing SIP undermines the overall security of macOS systems and emphasizes the need for robust security measures to detect unusual behavior from privileged processes.
