CVE-2024-23296

Name of the Vulnerable Software and Affected Versions iPadOS versions prior to 17.4 iOS versions prior to 17.4 macOS versions prior to 13.6.7 watchOS (affected versions not specified) visionOS (affected versions not specified) iOS 16.7.8 tvOS (affected versions not specified)

Description The issue is a memory corruption problem addressed with improved validation. An attacker with arbitrary kernel read and write capability may be able to bypass kernel memory protections. Apple is aware of reports indicating that this issue may have been actively exploited. The vulnerability involves a buffer overflow in memory. The affected products include iPadOS, tvOS, iOS, watchOS, macOS, and visionOS.

Recommendations Update iPadOS to version 17.4 or later. Update iOS to version 17.4 or later. Update macOS to version 13.6.7 or later. Update iOS to version 16.7.8.