{"id":3140,"date":"2026-05-28T14:45:13","date_gmt":"2026-05-28T11:45:13","guid":{"rendered":"https:\/\/ws-sup.fi-s.seravo.com\/?page_id=3140"},"modified":"2026-05-28T15:36:56","modified_gmt":"2026-05-28T12:36:56","slug":"cve-2024-27357","status":"publish","type":"page","link":"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/","title":{"rendered":"CVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation"},"content":{"rendered":"\n
\n
\n
\n

\n CVE-2024-27357<\/h2>
\n
\n
\n
\n
\n

WithSecure Elements for Mac vulnerable to Local Privilege Escalation<\/h4>\n
<\/div>\n<\/div>\n<\/div>\n
\n
\n
<\/div>\n<\/div>\n<\/div>\n<\/div>\n <\/div>\n <\/div>\n <\/div> <\/div>\n <\/div>\n<\/section>\n\n\n\n
\n
\n
\n

 <\/p>\n

Status<\/b><\/p>\n

Fixed<\/p>\n

Risk level<\/b><\/p>\n

High<\/p>\n

Action required<\/b><\/p>\n

FIX No User action is required. The required fix has been published through automatic update channel for Elements agent & MDR with version 24.1<\/p>\n

Please note<\/b>\u00a0: End of life date for Client Security for Mac version 15 is on 30th Sept 2024. In order to mitigate this issue admin must take action to upgrade to Client Security for Mac 16.<\/p>\n

Affected products<\/b><\/p>\n

All WithSecure Endpoint Protection products for Mac<\/p>\n

WithSecure Elements Agent for Mac version 23.x & below<\/p>\n

WithSecure Elements Client Security for Mac version 15 & below<\/p>\n

WithSecure MDR version 23.x & below<\/p>\n

Platforms<\/b><\/p>\n

All supported platforms for the affected products<\/p>\n

Date issued<\/b><\/p>\n

2024-07-26<\/p>\n

Read more<\/a><\/div>\n<\/div>\n <\/div>\n
\n
\n
\n
\n
\n
\n
\n
\n
\n

More information<\/h3>\n<\/div>\n
\n

A Vulnerability during the installation or updated process allows a local user with administrator privileges to leading to potential local privilege escalation on WithSecure Mac Products.<\/p>\n

This issue was reported to WithSecure as a part of Internal Vulnerability Reward Program. No known exploit or attack has been seen in the wild.<\/p>\n

WithSecure is not aware of any known exploits for this vulnerability.<\/p>\n<\/div>\n

\n

Contributors<\/h3>\n<\/div>\n
\n

WithSecure\u00a0would like to thank following person for\u00a0bringing this issue to our attention.<\/p>\n<\/div>\n

\n
<\/div>\n<\/div>\n
\n
\n
\n
\n
\n
\n
\n

Max Keasley<\/h4>\n

WithSecure Security Consultant (UK)<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n

\n
\n
\n
\n
\n
\n
<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n <\/div>\n <\/div>\n<\/section>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":11,"featured_media":0,"parent":2271,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-3140","page","type-page","status-publish","hentry"],"acf":[],"yoast_head":"\nCVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation - WithSecure\u2122<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation - WithSecure\u2122\" \/>\n<meta property=\"og:url\" content=\"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/\" \/>\n<meta property=\"og:site_name\" content=\"WithSecure\u2122\" \/>\n<meta property=\"article:modified_time\" content=\"2026-05-28T12:36:56+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/security-advisories\\\/cve-2024-27357\\\/\",\"url\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/security-advisories\\\/cve-2024-27357\\\/\",\"name\":\"CVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation - WithSecure\u2122\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/#website\"},\"datePublished\":\"2026-05-28T11:45:13+00:00\",\"dateModified\":\"2026-05-28T12:36:56+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/security-advisories\\\/cve-2024-27357\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/support.withsecure.com\\\/en\\\/security-advisories\\\/cve-2024-27357\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/security-advisories\\\/cve-2024-27357\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security advisories\",\"item\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/?page_id=2271\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"CVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/\",\"name\":\"WithSecure\u2122\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"CVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation - WithSecure\u2122","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/","og_locale":"en_US","og_type":"article","og_title":"CVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation - WithSecure\u2122","og_url":"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/","og_site_name":"WithSecure\u2122","article_modified_time":"2026-05-28T12:36:56+00:00","twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/","url":"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/","name":"CVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation - WithSecure\u2122","isPartOf":{"@id":"https:\/\/support.withsecure.com\/en\/#website"},"datePublished":"2026-05-28T11:45:13+00:00","dateModified":"2026-05-28T12:36:56+00:00","breadcrumb":{"@id":"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/support.withsecure.com\/en\/security-advisories\/cve-2024-27357\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/support.withsecure.com\/en\/"},{"@type":"ListItem","position":2,"name":"Security advisories","item":"https:\/\/support.withsecure.com\/en\/?page_id=2271"},{"@type":"ListItem","position":3,"name":"CVE-2024-27357 WithSecure Elements for Mac vulnerable to Local Privilege Escalation"}]},{"@type":"WebSite","@id":"https:\/\/support.withsecure.com\/en\/#website","url":"https:\/\/support.withsecure.com\/en\/","name":"WithSecure\u2122","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/support.withsecure.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages\/3140","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/comments?post=3140"}],"version-history":[{"count":4,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages\/3140\/revisions"}],"predecessor-version":[{"id":3183,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages\/3140\/revisions\/3183"}],"up":[{"embeddable":true,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages\/2271"}],"wp:attachment":[{"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/media?parent=3140"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}