PT-2024-19759 · Apple · Ipados+7

Xinru Chi

Published

2024-03-07

Updated

2026-05-22

CVE-2024-23265

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS versions 12.7.4 through 14.4 visionOS version 1.1 iOS versions 16.7.6, 17.4 iPadOS versions 16.7.6, 17.4 watchOS version 10.4 tvOS version 17.4

Description A memory corruption issue was addressed through improved locking mechanisms. The issue may allow a malicious application to cause unexpected system termination or to write to kernel memory, potentially leading to kernel privilege escalation.

Recommendations Update macOS to version 14.4. Update visionOS to version 1.1. Update iOS to version 17.4. Update iPadOS to version 17.4. Update watchOS to version 10.4. Update tvOS to version 17.4.

Fix

DoS

LPE

Resource Exhaustion

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-787

Related Identifiers

CVE-2024-23265

Affected Products

Apple Macos

Ios

Ipados

Macos Sonoma

Macos Ventura

Tvos

Visionos

Watchos

PT-2024-19759 · Apple · Ipados+7

CVE-2024-23265

Weakness Enumeration

Related Identifiers

Affected Products

References · 47