PT-2023-8347 · Apple · Apple Macos

Ivan Fratric

Publicado

2023-12-11

Atualizado

2024-02-02

CVE-2023-42882

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS versions prior to 14.2

Description The issue is related to a buffer overflow in the AppleVA component of the macOS operating system, which can lead to arbitrary code execution when processing an image. This is due to improper memory handling.

Recommendations For versions prior to 14.2, update to macOS Sonoma 14.2 to resolve the issue. As a temporary workaround, consider avoiding the processing of images from untrusted sources until the update is applied.

Exploit

Correção

Buffer Overflow

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-787

Identificadores relacionados

BDU:2024-00536

CVE-2023-42882

Produtos afetados

Apple Macos

PT-2023-8347 · Apple · Apple Macos

CVE-2023-42882

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 14