Vulnerability-Lookup

WID-SEC-W-2024-1724

Vulnerability from csaf_certbund - Published: 2024-07-29 22:00 - Updated: 2025-03-24 23:00

Summary

Apple iOS und iPadOS: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Das Apple iOS (vormals iPhone OS) ist das Betriebssystem für das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch. Das Apple iPadOS ist das Betriebssystem für das von Apple entwickelte iPad.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Apple iOS und Apple iPadOS ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, Daten zu ändern und vertrauliche Informationen offenzulegen.

Betroffene Betriebssysteme: - iPhoneOS - Sonstiges

CVE-2023-52356

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2023-6277

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-27863

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-27871

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-27873

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40774

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40776

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40777

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40778

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40779

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40780

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40782

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40784

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40785

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40786

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40787

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40788

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40789

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40793

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40794

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40795

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40796

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40798

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40799

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40805

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40806

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40809

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40812

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40813

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40815

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40818

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40822

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40824

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40829

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40833

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40835

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-40836

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-44205

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-44206

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-4558

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-54551

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

CVE-2024-54564

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Apple iOS <17.6 Apple / iOS		<17.6
Apple iOS <16.7.9 Apple / iOS		<16.7.9
Apple iPadOS <16.7.9 Apple / iPadOS		<16.7.9
Apple iPadOS <17.6 Apple / iPadOS		<17.6

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://support.apple.com/en-us/HT214117	external
https://support.apple.com/en-us/HT214116	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Das Apple iOS (vormals iPhone OS) ist das Betriebssystem f\u00fcr das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch.\r\nDas Apple iPadOS ist das Betriebssystem f\u00fcr das von Apple entwickelte iPad.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Apple iOS und Apple iPadOS ausnutzen, um einen Cross-Site Scripting Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, Daten zu \u00e4ndern und vertrauliche Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- iPhoneOS\n- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1724 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1724.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1724 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1724"
      },
      {
        "category": "external",
        "summary": "Apple security Update vom 2024-07-29",
        "url": "https://support.apple.com/en-us/HT214117"
      },
      {
        "category": "external",
        "summary": "Apple security Update vom 2024-07-29",
        "url": "https://support.apple.com/en-us/HT214116"
      }
    ],
    "source_lang": "en-US",
    "title": "Apple iOS und iPadOS: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-03-24T23:00:00.000+00:00",
      "generator": {
        "date": "2025-03-25T12:32:49.048+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-1724",
      "initial_release_date": "2024-07-29T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-07-29T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-10-15T22:00:00.000+00:00",
          "number": "2",
          "summary": "CVE erg\u00e4nzt"
        },
        {
          "date": "2025-03-24T23:00:00.000+00:00",
          "number": "3",
          "summary": "CVE-2024-54551, CVE-2024-54564 erg\u00e4nzt"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c17.6",
                "product": {
                  "name": "Apple iOS \u003c17.6",
                  "product_id": "T036494"
                }
              },
              {
                "category": "product_version",
                "name": "17.6",
                "product": {
                  "name": "Apple iOS 17.6",
                  "product_id": "T036494-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:iphone_os:17.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c16.7.9",
                "product": {
                  "name": "Apple iOS \u003c16.7.9",
                  "product_id": "T036495"
                }
              },
              {
                "category": "product_version",
                "name": "16.7.9",
                "product": {
                  "name": "Apple iOS 16.7.9",
                  "product_id": "T036495-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:iphone_os:16.7.9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "iOS"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c16.7.9",
                "product": {
                  "name": "Apple iPadOS \u003c16.7.9",
                  "product_id": "T036496"
                }
              },
              {
                "category": "product_version",
                "name": "16.7.9",
                "product": {
                  "name": "Apple iPadOS 16.7.9",
                  "product_id": "T036496-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:ipados:16.7.9"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c17.6",
                "product": {
                  "name": "Apple iPadOS \u003c17.6",
                  "product_id": "T036497"
                }
              },
              {
                "category": "product_version",
                "name": "17.6",
                "product": {
                  "name": "Apple iPadOS 17.6",
                  "product_id": "T036497-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:ipados:17.6"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "iPadOS"
          }
        ],
        "category": "vendor",
        "name": "Apple"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-52356",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2023-52356"
    },
    {
      "cve": "CVE-2023-6277",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2023-6277"
    },
    {
      "cve": "CVE-2024-27863",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-27863"
    },
    {
      "cve": "CVE-2024-27871",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-27871"
    },
    {
      "cve": "CVE-2024-27873",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-27873"
    },
    {
      "cve": "CVE-2024-40774",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40774"
    },
    {
      "cve": "CVE-2024-40776",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40776"
    },
    {
      "cve": "CVE-2024-40777",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40777"
    },
    {
      "cve": "CVE-2024-40778",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40778"
    },
    {
      "cve": "CVE-2024-40779",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40779"
    },
    {
      "cve": "CVE-2024-40780",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40780"
    },
    {
      "cve": "CVE-2024-40782",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40782"
    },
    {
      "cve": "CVE-2024-40784",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40784"
    },
    {
      "cve": "CVE-2024-40785",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40785"
    },
    {
      "cve": "CVE-2024-40786",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40786"
    },
    {
      "cve": "CVE-2024-40787",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40787"
    },
    {
      "cve": "CVE-2024-40788",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40788"
    },
    {
      "cve": "CVE-2024-40789",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40789"
    },
    {
      "cve": "CVE-2024-40793",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40793"
    },
    {
      "cve": "CVE-2024-40794",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40794"
    },
    {
      "cve": "CVE-2024-40795",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40795"
    },
    {
      "cve": "CVE-2024-40796",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40796"
    },
    {
      "cve": "CVE-2024-40798",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40798"
    },
    {
      "cve": "CVE-2024-40799",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40799"
    },
    {
      "cve": "CVE-2024-40805",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40805"
    },
    {
      "cve": "CVE-2024-40806",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40806"
    },
    {
      "cve": "CVE-2024-40809",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40809"
    },
    {
      "cve": "CVE-2024-40812",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40812"
    },
    {
      "cve": "CVE-2024-40813",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40813"
    },
    {
      "cve": "CVE-2024-40815",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40815"
    },
    {
      "cve": "CVE-2024-40818",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40818"
    },
    {
      "cve": "CVE-2024-40822",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40822"
    },
    {
      "cve": "CVE-2024-40824",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40824"
    },
    {
      "cve": "CVE-2024-40829",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40829"
    },
    {
      "cve": "CVE-2024-40833",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40833"
    },
    {
      "cve": "CVE-2024-40835",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40835"
    },
    {
      "cve": "CVE-2024-40836",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-40836"
    },
    {
      "cve": "CVE-2024-44205",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-44205"
    },
    {
      "cve": "CVE-2024-44206",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-44206"
    },
    {
      "cve": "CVE-2024-4558",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-4558"
    },
    {
      "cve": "CVE-2024-54551",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-54551"
    },
    {
      "cve": "CVE-2024-54564",
      "product_status": {
        "known_affected": [
          "T036494",
          "T036495",
          "T036496",
          "T036497"
        ]
      },
      "release_date": "2024-07-29T22:00:00.000+00:00",
      "title": "CVE-2024-54564"
    }
  ]
}

CVE-2023-52356 (GCVE-0-2023-52356)

Vulnerability from cvelistv5 – Published: 2024-01-25 20:03 – Updated: 2026-05-12 08:27

Title

Libtiff: segment fault in libtiff in tiffreadrgbatileext() leading to denial of service

Summary

A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-122 - Heap-based Buffer Overflow

Assigner

redhat

References

20 references

URL	Tags
https://access.redhat.com/errata/RHSA-2024:5079	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:20801	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:21994	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:23078	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:23079	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:23080	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:16174	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:3461	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:3462	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:5958	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:7081	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:7304	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:7335	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:8746	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:8747	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:8748	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-52356	vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2251344	issue-trackingx_refsource_REDHAT
https://gitlab.com/libtiff/libtiff/-/issues/622
https://gitlab.com/libtiff/libtiff/-/merge_requests/546

Impacted products

21 products

Vendor	Product	Version
		Affected: 0 , < 4.6.0 (semver)
Red Hat	Red Hat Enterprise Linux 10	Unaffected: 0:4.6.0-6.el10_1.2 , < * (rpm) cpe:/o:redhat:enterprise_linux:10.1
Red Hat	Red Hat Enterprise Linux 10.0 Extended Update Support	Unaffected: 0:4.6.0-6.el10_0.2 , < * (rpm) cpe:/o:redhat:enterprise_linux_eus:10.0
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 0:4.0.9-32.el8_10 , < * (rpm) cpe:/a:redhat:enterprise_linux:8::appstream cpe:/a:redhat:enterprise_linux:8::crb
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:4.4.0-15.el9 , < * (rpm) cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::crb
Red Hat	Red Hat Enterprise Linux 9.6 Extended Update Support	Unaffected: 0:4.4.0-13.el9_6.3 , < * (rpm) cpe:/a:redhat:rhel_eus:9.6::appstream cpe:/a:redhat:rhel_eus:9.6::crb
Red Hat	Red Hat AI Inference Server 3.2	Unaffected: 3.2.2-1765379088 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.2::el9
Red Hat	Red Hat AI Inference Server 3.2	Unaffected: 3.2.2-1765379049 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.2::el9
Red Hat	Red Hat AI Inference Server 3.2	Unaffected: 3.2.2-1764871796 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.2::el9
Red Hat	Red Hat AI Inference Server 3.2	Unaffected: 1772160593 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.2::el9
Red Hat	Red Hat AI Inference Server 3.2	Unaffected: 1772160625 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.2::el9
Red Hat	Red Hat AI Inference Server 3.2	Unaffected: 1775740563 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.2::el9
Red Hat	Red Hat AI Inference Server 3.3	Unaffected: 1778244546 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.3::el9
Red Hat	Red Hat AI Inference Server 3.3	Unaffected: 1775680192 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.3::el9
Red Hat	Red Hat AI Inference Server 3.3	Unaffected: 1775680262 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.3::el9
Red Hat	Red Hat AI Inference Server 3.3	Unaffected: 1775749857 , < * (rpm) cpe:/a:redhat:ai_inference_server:3.3::el9
Red Hat	Red Hat Discovery 2	Unaffected: 2.4.0-1763656152 , < * (rpm) cpe:/a:redhat:discovery:2::el9
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8

Date Public

2023-11-03 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T20:36:13.850Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2023-52356"
          },
          {
            "name": "RHBZ#2251344",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251344"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://gitlab.com/libtiff/libtiff/-/issues/622"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/546"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00011.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214123"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214122"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214118"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214116"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214120"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214124"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/23"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/20"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/17"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/19"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00019.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52356",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-01-28T01:27:48.546657Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-17T21:19:29.445Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://gitlab.com/libtiff/libtiff",
          "defaultStatus": "unaffected",
          "packageName": "libtiff",
          "versions": [
            {
              "lessThan": "4.6.0",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:10.1"
          ],
          "defaultStatus": "affected",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 10",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:4.6.0-6.el10_1.2",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux_eus:10.0"
          ],
          "defaultStatus": "affected",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:4.6.0-6.el10_0.2",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::appstream",
            "cpe:/a:redhat:enterprise_linux:8::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:4.0.9-32.el8_10",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::appstream",
            "cpe:/a:redhat:enterprise_linux:9::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:4.4.0-15.el9",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:9.6::appstream",
            "cpe:/a:redhat:rhel_eus:9.6::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:4.4.0-13.el9_6.3",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/vllm-cuda-rhel9",
          "product": "Red Hat AI Inference Server 3.2",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "3.2.2-1765379088",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/vllm-rocm-rhel9",
          "product": "Red Hat AI Inference Server 3.2",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "3.2.2-1765379049",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/model-opt-cuda-rhel9",
          "product": "Red Hat AI Inference Server 3.2",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "3.2.2-1764871796",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/vllm-cuda-rhel9",
          "product": "Red Hat AI Inference Server 3.2",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1772160593",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/vllm-rocm-rhel9",
          "product": "Red Hat AI Inference Server 3.2",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1772160625",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/vllm-cuda-rhel9",
          "product": "Red Hat AI Inference Server 3.2",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1775740563",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.3::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/vllm-spyre-rhel9",
          "product": "Red Hat AI Inference Server 3.3",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1778244546",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.3::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/vllm-cuda-rhel9",
          "product": "Red Hat AI Inference Server 3.3",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1775680192",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.3::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/vllm-rocm-rhel9",
          "product": "Red Hat AI Inference Server 3.3",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1775680262",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:ai_inference_server:3.3::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhaiis/model-opt-cuda-rhel9",
          "product": "Red Hat AI Inference Server 3.3",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1775749857",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:discovery:2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "discovery/discovery-ui-rhel9",
          "product": "Red Hat Discovery 2",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "2.4.0-1763656152",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "compat-libtiff3",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "affected",
          "packageName": "compat-libtiff3",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2023-11-03T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-122",
              "description": "Heap-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-12T08:27:15.314Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2024:5079",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:5079"
        },
        {
          "name": "RHSA-2025:20801",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:20801"
        },
        {
          "name": "RHSA-2025:21994",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:21994"
        },
        {
          "name": "RHSA-2025:23078",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:23078"
        },
        {
          "name": "RHSA-2025:23079",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:23079"
        },
        {
          "name": "RHSA-2025:23080",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:23080"
        },
        {
          "name": "RHSA-2026:16174",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:16174"
        },
        {
          "name": "RHSA-2026:3461",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:3461"
        },
        {
          "name": "RHSA-2026:3462",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:3462"
        },
        {
          "name": "RHSA-2026:5958",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:5958"
        },
        {
          "name": "RHSA-2026:7081",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:7081"
        },
        {
          "name": "RHSA-2026:7304",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:7304"
        },
        {
          "name": "RHSA-2026:7335",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:7335"
        },
        {
          "name": "RHSA-2026:8746",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:8746"
        },
        {
          "name": "RHSA-2026:8747",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:8747"
        },
        {
          "name": "RHSA-2026:8748",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:8748"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2023-52356"
        },
        {
          "name": "RHBZ#2251344",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251344"
        },
        {
          "url": "https://gitlab.com/libtiff/libtiff/-/issues/622"
        },
        {
          "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/546"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2023-11-24T00:00:00.000Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2023-11-03T00:00:00.000Z",
          "value": "Made public."
        }
      ],
      "title": "Libtiff: segment fault in libtiff  in tiffreadrgbatileext() leading to denial of service",
      "x_generator": {
        "engine": "cvelib 1.8.0"
      },
      "x_redhatCweChain": "CWE-122: Heap-based Buffer Overflow"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2023-52356",
    "datePublished": "2024-01-25T20:03:40.971Z",
    "dateReserved": "2024-01-24T14:08:49.010Z",
    "dateUpdated": "2026-05-12T08:27:15.314Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2023-6277 (GCVE-0-2023-6277)

Vulnerability from cvelistv5 – Published: 2023-11-24 18:20 – Updated: 2026-01-22 15:42

Title

Libtiff: out-of-memory in tiffopen via a craft file

Summary

An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE

CWE-400 - Uncontrolled Resource Consumption

Assigner

redhat

References

4 references

URL	Tags
https://access.redhat.com/security/cve/CVE-2023-6277	vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2251311	issue-trackingx_refsource_REDHAT
https://gitlab.com/libtiff/libtiff/-/issues/614
https://gitlab.com/libtiff/libtiff/-/merge_requests/545

Impacted products

6 products

Vendor	Product	Version
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9

Date Public

2023-11-02 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T08:28:21.720Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2023-6277"
          },
          {
            "name": "RHBZ#2251311",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251311"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://gitlab.com/libtiff/libtiff/-/issues/614"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/545"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WJIN6DTSL3VODZUGWEUXLEL5DR53EZMV/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y7ZGN2MZXJ6E57W3L4YBM3ZPAU3T7T5C/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240119-0002/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214123"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214122"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214118"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214116"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214120"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT214124"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/23"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/20"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/17"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/19"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-6277",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-17T17:20:31.042625Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-17T17:20:44.575Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "compat-libtiff3",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "affected",
          "packageName": "compat-libtiff3",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "affected",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "affected",
          "packageName": "libtiff",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2023-11-02T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-400",
              "description": "Uncontrolled Resource Consumption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-22T15:42:19.205Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2023-6277"
        },
        {
          "name": "RHBZ#2251311",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251311"
        },
        {
          "url": "https://gitlab.com/libtiff/libtiff/-/issues/614"
        },
        {
          "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/545"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2023-11-24T00:00:00.000Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2023-11-02T00:00:00.000Z",
          "value": "Made public."
        }
      ],
      "title": "Libtiff: out-of-memory in tiffopen via a craft file",
      "x_generator": {
        "engine": "cvelib 1.8.0"
      },
      "x_redhatCweChain": "CWE-400: Uncontrolled Resource Consumption"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2023-6277",
    "datePublished": "2023-11-24T18:20:16.683Z",
    "dateReserved": "2023-11-24T08:27:14.831Z",
    "dateUpdated": "2026-01-22T15:42:19.205Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27863 (GCVE-0-2024-27863)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:16 – Updated: 2026-04-02 18:15

Summary

An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. A local attacker may be able to determine kernel memory layout.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

A local attacker may be able to determine kernel memory layout

Assigner

apple

References

5 references

URL	Tags
https://support.apple.com/en-us/120909
https://support.apple.com/en-us/120911
https://support.apple.com/en-us/120914
https://support.apple.com/en-us/120915
https://support.apple.com/en-us/120916

Impacted products

5 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: 0 , < 17.6 (custom)
Apple	macOS	Affected: 0 , < 14.6 (custom)
Apple	tvOS	Affected: 0 , < 17.6 (custom)
Apple	visionOS	Affected: 0 , < 1.3 (custom)
Apple	watchOS	Affected: 0 , < 10.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27863",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-30T14:49:36.907707Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-25T16:10:42.854Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T17:19:07.533Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214124"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214123"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214122"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/23"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "url": "https://support.apple.com/kb/HT214124"
          },
          {
            "url": "https://support.apple.com/kb/HT214123"
          },
          {
            "url": "https://support.apple.com/kb/HT214122"
          },
          {
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "url": "https://support.apple.com/kb/HT214117"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "visionOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "1.3",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "watchOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "10.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. A local attacker may be able to determine kernel memory layout."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "A local attacker may be able to determine kernel memory layout",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:15:13.322Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120909"
        },
        {
          "url": "https://support.apple.com/en-us/120911"
        },
        {
          "url": "https://support.apple.com/en-us/120914"
        },
        {
          "url": "https://support.apple.com/en-us/120915"
        },
        {
          "url": "https://support.apple.com/en-us/120916"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27863",
    "datePublished": "2024-07-29T22:16:49.497Z",
    "dateReserved": "2024-02-26T15:32:28.540Z",
    "dateUpdated": "2026-04-02T18:15:13.322Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27871 (GCVE-0-2024-27871)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:17 – Updated: 2026-04-02 18:27

Summary

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. An app may be able to access protected user data.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

An app may be able to access protected user data

Assigner

apple

References

2 references

URL	Tags
https://support.apple.com/en-us/120909
https://support.apple.com/en-us/120911

Impacted products

2 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: 0 , < 17.6 (custom)
Apple	macOS	Affected: 0 , < 14.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27871",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-30T14:45:21.275083Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-22",
                "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-14T16:05:27.754Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T17:19:10.291Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "url": "https://support.apple.com/kb/HT214117"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. An app may be able to access protected user data."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to access protected user data",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:27:01.053Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120909"
        },
        {
          "url": "https://support.apple.com/en-us/120911"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27871",
    "datePublished": "2024-07-29T22:17:22.604Z",
    "dateReserved": "2024-02-26T15:32:28.541Z",
    "dateUpdated": "2026-04-02T18:27:01.053Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-27873 (GCVE-0-2024-27873)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:16 – Updated: 2026-04-02 18:11

Summary

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. Processing a maliciously crafted video file may lead to unexpected app termination.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE

Processing a maliciously crafted video file may lead to unexpected app termination

Assigner

apple

References

5 references

URL	Tags
https://support.apple.com/en-us/120908
https://support.apple.com/en-us/120909
https://support.apple.com/en-us/120910
https://support.apple.com/en-us/120911
https://support.apple.com/en-us/120912

Impacted products

2 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: 0 , < 16.7.9 (custom) Affected: 0 , < 17.6 (custom)
Apple	macOS	Affected: 0 , < 12.7.6 (custom) Affected: 0 , < 13.6.8 (custom) Affected: 0 , < 14.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27873",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-29T23:52:08.601993Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-787",
                "description": "CWE-787 Out-of-bounds Write",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-13T18:17:50.870Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T17:19:17.116Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214116"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214120"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214118"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/20"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/17"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/19"
          },
          {
            "url": "https://support.apple.com/kb/HT214120"
          },
          {
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "url": "https://support.apple.com/kb/HT214118"
          },
          {
            "url": "https://support.apple.com/kb/HT214117"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "16.7.9",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "12.7.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "13.6.8",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "14.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. Processing a maliciously crafted video file may lead to unexpected app termination."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing a maliciously crafted video file may lead to unexpected app termination",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:11:25.530Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120908"
        },
        {
          "url": "https://support.apple.com/en-us/120909"
        },
        {
          "url": "https://support.apple.com/en-us/120910"
        },
        {
          "url": "https://support.apple.com/en-us/120911"
        },
        {
          "url": "https://support.apple.com/en-us/120912"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-27873",
    "datePublished": "2024-07-29T22:16:40.354Z",
    "dateReserved": "2024-02-26T15:32:28.542Z",
    "dateUpdated": "2026-04-02T18:11:25.530Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-40774 (GCVE-0-2024-40774)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:16 – Updated: 2026-04-02 18:08

Summary

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, watchOS 10.6. An app may be able to bypass Privacy preferences.

Severity

5.9 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

CWE

An app may be able to bypass Privacy preferences

Assigner

apple

References

6 references

URL	Tags
https://support.apple.com/en-us/120909
https://support.apple.com/en-us/120910
https://support.apple.com/en-us/120911
https://support.apple.com/en-us/120912
https://support.apple.com/en-us/120914
https://support.apple.com/en-us/120916

Impacted products

4 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: 0 , < 17.6 (custom)
Apple	macOS	Affected: 0 , < 12.7.6 (custom) Affected: 0 , < 13.6.8 (custom) Affected: 0 , < 14.6 (custom)
Apple	tvOS	Affected: 0 , < 17.6 (custom)
Apple	watchOS	Affected: 0 , < 10.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 5.9,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "CHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-40774",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-31T12:34:05.640371Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-28T20:32:08.126Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T17:22:15.424Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214120"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214124"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214122"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214118"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/20"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/19"
          },
          {
            "url": "https://support.apple.com/kb/HT214124"
          },
          {
            "url": "https://support.apple.com/kb/HT214122"
          },
          {
            "url": "https://support.apple.com/kb/HT214120"
          },
          {
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "url": "https://support.apple.com/kb/HT214118"
          },
          {
            "url": "https://support.apple.com/kb/HT214117"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "12.7.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "13.6.8",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "14.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "watchOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "10.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, watchOS 10.6. An app may be able to bypass Privacy preferences."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to bypass Privacy preferences",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:08:07.558Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120909"
        },
        {
          "url": "https://support.apple.com/en-us/120910"
        },
        {
          "url": "https://support.apple.com/en-us/120911"
        },
        {
          "url": "https://support.apple.com/en-us/120912"
        },
        {
          "url": "https://support.apple.com/en-us/120914"
        },
        {
          "url": "https://support.apple.com/en-us/120916"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-40774",
    "datePublished": "2024-07-29T22:16:29.315Z",
    "dateReserved": "2024-07-10T17:11:04.687Z",
    "dateUpdated": "2026-04-02T18:08:07.558Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-40776 (GCVE-0-2024-40776)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:17 – Updated: 2026-04-02 18:22

Summary

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 17.6, iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing maliciously crafted web content may lead to an unexpected process crash.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE

Processing maliciously crafted web content may lead to an unexpected process crash

Assigner

apple

References

7 references

URL	Tags
https://support.apple.com/en-us/120908
https://support.apple.com/en-us/120909
https://support.apple.com/en-us/120911
https://support.apple.com/en-us/120913
https://support.apple.com/en-us/120914
https://support.apple.com/en-us/120915
https://support.apple.com/en-us/120916

Impacted products

6 products

Vendor	Product	Version
Apple	Safari	Affected: 0 , < 17.6 (custom)
Apple	iOS and iPadOS	Affected: 0 , < 16.7.9 (custom) Affected: 0 , < 17.6 (custom)
Apple	macOS	Affected: 0 , < 14.6 (custom)
Apple	tvOS	Affected: 0 , < 17.6 (custom)
Apple	visionOS	Affected: 0 , < 1.3 (custom)
Apple	watchOS	Affected: 0 , < 10.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 6.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-40776",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-30T13:33:50.803494Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-27T01:01:21.025Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T17:22:27.858Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214121"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214116"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214124"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214123"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214122"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/15"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/23"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/17"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00006.html"
          },
          {
            "url": "https://support.apple.com/kb/HT214124"
          },
          {
            "url": "https://support.apple.com/kb/HT214123"
          },
          {
            "url": "https://support.apple.com/kb/HT214122"
          },
          {
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "url": "https://support.apple.com/kb/HT214117"
          },
          {
            "url": "https://support.apple.com/kb/HT214116"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Safari",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "16.7.9",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "visionOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "1.3",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "watchOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "10.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 17.6, iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing maliciously crafted web content may lead to an unexpected process crash."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to an unexpected process crash",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:22:43.154Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120908"
        },
        {
          "url": "https://support.apple.com/en-us/120909"
        },
        {
          "url": "https://support.apple.com/en-us/120911"
        },
        {
          "url": "https://support.apple.com/en-us/120913"
        },
        {
          "url": "https://support.apple.com/en-us/120914"
        },
        {
          "url": "https://support.apple.com/en-us/120915"
        },
        {
          "url": "https://support.apple.com/en-us/120916"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-40776",
    "datePublished": "2024-07-29T22:17:08.706Z",
    "dateReserved": "2024-07-10T17:11:04.687Z",
    "dateUpdated": "2026-04-02T18:22:43.154Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-40777 (GCVE-0-2024-40777)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:17 – Updated: 2026-04-02 18:27

Summary

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app termination.

Severity

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE

Processing a maliciously crafted file may lead to unexpected app termination

Assigner

apple

References

5 references

URL	Tags
https://support.apple.com/en-us/120909
https://support.apple.com/en-us/120911
https://support.apple.com/en-us/120914
https://support.apple.com/en-us/120915
https://support.apple.com/en-us/120916

Impacted products

5 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: 0 , < 17.6 (custom)
Apple	macOS	Affected: 0 , < 14.6 (custom)
Apple	tvOS	Affected: 0 , < 17.6 (custom)
Apple	visionOS	Affected: 0 , < 1.3 (custom)
Apple	watchOS	Affected: 0 , < 10.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ipad_os",
            "vendor": "apple",
            "versions": [
              {
                "lessThan": "17.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "iphone_os",
            "vendor": "apple",
            "versions": [
              {
                "lessThan": "17.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "watchos",
            "vendor": "apple",
            "versions": [
              {
                "lessThan": "10.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:apple:visionos:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "visionos",
            "vendor": "apple",
            "versions": [
              {
                "lessThan": "1.3",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "tvos",
            "vendor": "apple",
            "versions": [
              {
                "lessThan": "17.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:apple:macos:14.0:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "macos",
            "vendor": "apple",
            "versions": [
              {
                "lessThan": "14.6",
                "status": "affected",
                "version": "14.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "LOW",
              "baseScore": 3.3,
              "baseSeverity": "LOW",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-40777",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-30T00:10:06.876051Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-13T18:01:10.892Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T17:22:34.695Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214124"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214123"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214122"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/23"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "url": "https://support.apple.com/kb/HT214124"
          },
          {
            "url": "https://support.apple.com/kb/HT214123"
          },
          {
            "url": "https://support.apple.com/kb/HT214122"
          },
          {
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "url": "https://support.apple.com/kb/HT214117"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "visionOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "1.3",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "watchOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "10.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app termination."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing a maliciously crafted file may lead to unexpected app termination",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:27:24.469Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120909"
        },
        {
          "url": "https://support.apple.com/en-us/120911"
        },
        {
          "url": "https://support.apple.com/en-us/120914"
        },
        {
          "url": "https://support.apple.com/en-us/120915"
        },
        {
          "url": "https://support.apple.com/en-us/120916"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-40777",
    "datePublished": "2024-07-29T22:17:26.092Z",
    "dateReserved": "2024-07-10T17:11:04.687Z",
    "dateUpdated": "2026-04-02T18:27:24.469Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-40778 (GCVE-0-2024-40778)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:16 – Updated: 2026-04-02 18:09

Summary

An authentication issue was addressed with improved state management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Photos in the Hidden Photos Album may be viewed without authentication.

Severity

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWE

Photos in the Hidden Photos Album may be viewed without authentication

Assigner

apple

References

3 references

URL	Tags
https://support.apple.com/en-us/120908
https://support.apple.com/en-us/120909
https://support.apple.com/en-us/120911

Impacted products

2 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: 0 , < 16.7.9 (custom) Affected: 0 , < 17.6 (custom)
Apple	macOS	Affected: 0 , < 14.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 3.3,
              "baseSeverity": "LOW",
              "confidentialityImpact": "LOW",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-40778",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-30T14:56:40.272211Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-287",
                "description": "CWE-287 Improper Authentication",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-17T15:50:14.601Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T17:22:38.873Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214116"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/17"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "url": "https://support.apple.com/kb/HT214117"
          },
          {
            "url": "https://support.apple.com/kb/HT214116"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "16.7.9",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An authentication issue was addressed with improved state management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Photos in the Hidden Photos Album may be viewed without authentication."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Photos in the Hidden Photos Album may be viewed without authentication",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:09:32.265Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120908"
        },
        {
          "url": "https://support.apple.com/en-us/120909"
        },
        {
          "url": "https://support.apple.com/en-us/120911"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-40778",
    "datePublished": "2024-07-29T22:16:32.808Z",
    "dateReserved": "2024-07-10T17:11:04.688Z",
    "dateUpdated": "2026-04-02T18:09:32.265Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-40779 (GCVE-0-2024-40779)

Vulnerability from cvelistv5 – Published: 2024-07-29 22:16 – Updated: 2026-04-02 18:09

Summary

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Safari 17.6, iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing maliciously crafted web content may lead to an unexpected process crash.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE

Processing maliciously crafted web content may lead to an unexpected process crash

Assigner

apple

References

7 references

URL	Tags
https://support.apple.com/en-us/120908
https://support.apple.com/en-us/120909
https://support.apple.com/en-us/120911
https://support.apple.com/en-us/120913
https://support.apple.com/en-us/120914
https://support.apple.com/en-us/120915
https://support.apple.com/en-us/120916

Impacted products

6 products

Vendor	Product	Version
Apple	Safari	Affected: 0 , < 17.6 (custom)
Apple	iOS and iPadOS	Affected: 0 , < 16.7.9 (custom) Affected: 0 , < 17.6 (custom)
Apple	macOS	Affected: 0 , < 14.6 (custom)
Apple	tvOS	Affected: 0 , < 17.6 (custom)
Apple	visionOS	Affected: 0 , < 1.3 (custom)
Apple	watchOS	Affected: 0 , < 10.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-40779",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-30T18:33:34.012449Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-13T16:26:31.483Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T17:22:47.026Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214121"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214117"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214116"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214124"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214119"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214123"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT214122"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/15"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/23"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/17"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2024/Jul/18"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00006.html"
          },
          {
            "url": "https://support.apple.com/kb/HT214124"
          },
          {
            "url": "https://support.apple.com/kb/HT214123"
          },
          {
            "url": "https://support.apple.com/kb/HT214122"
          },
          {
            "url": "https://support.apple.com/kb/HT214119"
          },
          {
            "url": "https://support.apple.com/kb/HT214117"
          },
          {
            "url": "https://support.apple.com/kb/HT214116"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Safari",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "16.7.9",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "visionOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "1.3",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "watchOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "10.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Safari 17.6, iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing maliciously crafted web content may lead to an unexpected process crash."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to an unexpected process crash",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:09:37.173Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120908"
        },
        {
          "url": "https://support.apple.com/en-us/120909"
        },
        {
          "url": "https://support.apple.com/en-us/120911"
        },
        {
          "url": "https://support.apple.com/en-us/120913"
        },
        {
          "url": "https://support.apple.com/en-us/120914"
        },
        {
          "url": "https://support.apple.com/en-us/120915"
        },
        {
          "url": "https://support.apple.com/en-us/120916"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2024-40779",
    "datePublished": "2024-07-29T22:16:33.641Z",
    "dateReserved": "2024-07-10T17:11:04.688Z",
    "dateUpdated": "2026-04-02T18:09:37.173Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2024-1724

CVE-2023-52356 (GCVE-0-2023-52356)

CVE-2023-6277 (GCVE-0-2023-6277)

CVE-2024-27863 (GCVE-0-2024-27863)

CVE-2024-27871 (GCVE-0-2024-27871)

CVE-2024-27873 (GCVE-0-2024-27873)

CVE-2024-40774 (GCVE-0-2024-40774)

CVE-2024-40776 (GCVE-0-2024-40776)

CVE-2024-40777 (GCVE-0-2024-40777)

CVE-2024-40778 (GCVE-0-2024-40778)

CVE-2024-40779 (GCVE-0-2024-40779)

Tags

Sightings

Nomenclature