Vulnerabilities > CVE-2024-23214 - Out-of-bounds Write vulnerability in Apple Ipados, Iphone OS and Macos

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

apple

CWE-787

NVD

Published: 2024-01-23

Updated: 2024-01-30

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, iOS 17.3 and iPadOS 17.3. Processing maliciously crafted web content may lead to arbitrary code execution.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple Macos 14.0 Apple Macos 14.1 Apple Macos 14.1.1 Apple Macos 14.1.2 Apple Macos 14.2 Apple Macos 14.2.1 Apple Iphone OS 16.0.1 Apple Iphone OS 16.0.2 Apple Iphone OS 16.0.3 Apple Iphone OS 16.1 Apple Iphone OS 16.2 Apple Iphone OS 16.3 Apple Iphone OS 16.4 Apple Iphone OS 16.5 Apple Iphone OS 16.6 Apple Iphone OS 16.7 Apple Iphone OS 16.7.3 Apple Iphone OS 17.0.3 Apple Iphone OS 17.1 Apple Iphone OS 17.1.1 Apple Iphone OS 17.1.2 Apple Iphone OS 17.2 Apple Ipados 16.1 Apple Ipados 16.1.1 Apple Ipados 16.1.2 Apple Ipados 16.2 Apple Ipados 16.3 Apple Ipados 16.4 Apple Ipados 16.5 Apple Ipados 16.6 Apple Ipados 16.7 Apple Ipados 16.7.3 Apple Ipados 17.1 Apple Ipados 17.1.1 Apple Ipados 17.1.2 Apple Ipados 17.2	36

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References