An out-of-bounds read was addressed with improved input validation. This issue is fixed in visionOS 1.1, macOS Sonoma 14.4. Processing an image may lead to arbitrary code execution.
References
| Link | Resource |
|---|---|
| http://seclists.org/fulldisclosure/2024/Mar/21 | Mailing List |
| http://seclists.org/fulldisclosure/2024/Mar/26 | Mailing List |
| https://support.apple.com/en-us/HT214084 | Vendor Advisory |
| https://support.apple.com/en-us/HT214087 | Vendor Advisory |
| http://seclists.org/fulldisclosure/2024/Mar/21 | Mailing List |
| http://seclists.org/fulldisclosure/2024/Mar/26 | Mailing List |
| https://support.apple.com/en-us/HT214084 | Vendor Advisory |
| https://support.apple.com/en-us/HT214087 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
06 Dec 2024, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:* |
|
| First Time |
Apple
Apple visionos Apple macos |
|
| References | () http://seclists.org/fulldisclosure/2024/Mar/21 - Mailing List | |
| References | () http://seclists.org/fulldisclosure/2024/Mar/26 - Mailing List | |
| References | () https://support.apple.com/en-us/HT214084 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT214087 - Vendor Advisory |
Information
Published : 2024-03-08 02:15
Updated : 2024-12-06 15:15
NVD link : CVE-2024-23258
Mitre link : CVE-2024-23258
CVE.ORG link : CVE-2024-23258
JSON object : View
Products Affected
apple
- macos
- visionos
CWE
CWE-125
Out-of-bounds Read