CVE-2024-23214

high

Description

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, iOS 17.3 and iPadOS 17.3. Processing maliciously crafted web content may lead to arbitrary code execution.

References

https://support.apple.com/en-us/HT214063

https://support.apple.com/en-us/HT214061

https://support.apple.com/en-us/HT214059

http://seclists.org/fulldisclosure/2024/Jan/36

http://seclists.org/fulldisclosure/2024/Jan/34

http://seclists.org/fulldisclosure/2024/Jan/33

Details

Source: Mitre, NVD

Published: 2024-01-23

Updated: 2024-01-30

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High