PT-2024-2550 · Apple · Ios+3
Lyra Rebane
+1
·
Published
2024-03-05
·
Updated
2026-05-04
·
CVE-2024-23296
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
iPadOS versions prior to 17.4
iOS versions prior to 17.4
macOS versions prior to 13.6.7
watchOS (affected versions not specified)
visionOS (affected versions not specified)
tvOS (affected versions not specified)
iOS 16.7.8
iPadOS 16.7.8
Description
The issue is a memory corruption flaw stemming from writing beyond allocated buffer boundaries in memory. Apple is aware of reports indicating potential exploitation of this issue. An attacker with arbitrary kernel read and write capabilities could bypass kernel memory protections. The issue was addressed through improved validation.
Recommendations
Update iPadOS to version 17.4 or later.
Update iOS to version 17.4 or later.
Update macOS to version 13.6.7 or later.
Update iOS to version 16.7.8.
Update iPadOS to version 16.7.8.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos
Ios
Ipados
Macos Ventura