CVE-2024-23270

EPSS 0.04%
Published 08.03.2024 02:15:49
Last modified 27.03.2025 20:15:22
Source product-security@apple.com
Teams watchlist Login
Open Login

The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.4, macOS Ventura 13.6.5, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, tvOS 17.4. An app may be able to execute arbitrary code with kernel privileges.

Affected products Warnungen 0 Metrics 3 CWE 1 References 12

Data is provided by the National Vulnerability Database (NVD)

Apple ≫ iPad OS Version < 17.4

Apple ≫ iPhone OS Version < 17.4

Apple ≫ macOS Version >= 12.0.0 < 12.7.4

Apple ≫ macOS Version >= 13.0 < 13.6.5

Apple ≫ macOS Version >= 14.0 < 14.4

Apple ≫ tvOS Version < 17.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.111

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H