CVE-2024-23264

Name of the Vulnerable Software and Affected Versions macOS versions prior to 12.7.4 macOS Ventura versions prior to 13.6.5 macOS Sonoma versions prior to 14.4 visionOS versions prior to 1.1 iOS versions prior to 17.4 iPadOS versions prior to 17.4 iOS versions prior to 16.7.6 iPadOS versions prior to 16.7.6 tvOS versions prior to 17.4

Description A validation issue was addressed with improved input sanitization, allowing an application to potentially read restricted memory. This issue is related to the Metal Framework library and can be exploited by remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the Metal Framework library is required to exploit this vulnerability.

Recommendations For macOS versions prior to 12.7.4, update to macOS Monterey 12.7.4 or later. For macOS Ventura versions prior to 13.6.5, update to macOS Ventura 13.6.5 or later. For macOS Sonoma versions prior to 14.4, update to macOS Sonoma 14.4 or later. For visionOS versions prior to 1.1, update to visionOS 1.1 or later. For iOS versions prior to 17.4, update to iOS 17.4 or later. For iPadOS versions prior to 17.4, update to iPadOS 17.4 or later. For iOS versions prior to 16.7.6, update to iOS 16.7.6 or later. For iPadOS versions prior to 16.7.6, update to iPadOS 16.7.6 or later. For tvOS versions prior to 17.4, update to tvOS 17.4 or later.