Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, iOS 17.3 and iPadOS 17.3. Processing maliciously crafted web content may lead to arbitrary code execution.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2024/Jan/33 | Third Party Advisory |
http://seclists.org/fulldisclosure/2024/Jan/34 | Third Party Advisory |
http://seclists.org/fulldisclosure/2024/Jan/36 | Third Party Advisory |
https://support.apple.com/en-us/HT214059 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT214061 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT214063 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
30 Jan 2024, 16:10
Type | Values Removed | Values Added |
---|---|---|
References | () http://seclists.org/fulldisclosure/2024/Jan/33 - Third Party Advisory | |
References | () http://seclists.org/fulldisclosure/2024/Jan/34 - Third Party Advisory | |
References | () http://seclists.org/fulldisclosure/2024/Jan/36 - Third Party Advisory | |
References | () https://support.apple.com/en-us/HT214059 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/HT214061 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/HT214063 - Release Notes, Vendor Advisory | |
CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* |
|
First Time |
Apple
Apple ipados Apple iphone Os Apple macos |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CWE | CWE-787 |
26 Jan 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Jan 2024, 13:44
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
23 Jan 2024, 01:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-23 01:15
Updated : 2024-01-30 16:10
NVD link : CVE-2024-23214
Mitre link : CVE-2024-23214
CVE.ORG link : CVE-2024-23214
JSON object : View
Products Affected
apple
- iphone_os
- ipados
- macos
CWE
CWE-787
Out-of-bounds Write