3.3
CVE-2024-23257
- EPSS 0.45%
- Veröffentlicht 08.03.2024 02:15:48
- Zuletzt bearbeitet 02.04.2026 19:17:07
- Quelle product-security@apple.com
- CVE-Watchlists
- Unerledigt
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, visionOS 1.1. Processing an image may result in disclosure of process memory.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.45% | 0.355 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 3.3 | 1.8 | 1.4 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 3.3 | 1.8 | 1.4 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
http://seclists.org/fulldisclosure/2024/Mar/21
https://support.apple.com/kb/HT214084
http://seclists.org/fulldisclosure/2024/Mar/22
https://support.apple.com/kb/HT214082
https://support.apple.com/kb/HT214085
http://seclists.org/fulldisclosure/2024/Mar/23
https://support.apple.com/kb/HT214083
http://seclists.org/fulldisclosure/2024/Mar/26
https://support.apple.com/en-us/HT214082
https://support.apple.com/kb/HT214087
https://support.apple.com/en-us/HT214083
https://support.apple.com/en-us/HT214085
https://support.apple.com/en-us/HT214084
https://support.apple.com/en-us/HT214087
https://support.apple.com/en-us/120883
https://support.apple.com/en-us/120895
https://support.apple.com/en-us/120880
https://support.apple.com/en-us/120886
https://support.apple.com/en-us/120884