Overview
- Description
- The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14.7.1, macOS Ventura 13.7.1, visionOS 2.1, watchOS 11.1, tvOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1. Parsing a maliciously crafted video file may lead to unexpected system termination.
- Source
- product-security@apple.com
- NVD status
- Modified
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-120
Social media
- Hype score
- Not currently trending
(CVE-2024-44232, CVE-2024-44233, CVE-2024-44234)[AppleAVD]Parsing a maliciously crafted video file -> unexpected system termination(OOB access) https://t.co/Apo2VWAmKL https://t.co/4wxwt6NbTP https://t.co/ye3FyqepfC https://t.co/2vQSMlGmNr Reported by Ivan Fratric(@ifsecure)
@xvonfers
2 Nov 2024
4460 Impressions
15 Retweets
43 Likes
15 Bookmarks
0 Replies
1 Quote
There is a new vulnerability with elevated criticality in Apple iOS and iPadOS (CVE-2024-44234) https://t.co/rm5qc9cjPN
@vuldb
2 Nov 2024
78 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-44234 The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14.7.1, macOS Ventura 13.7.1, visionOS 2.1, watchOS 11.1, tvOS 18.1, iOS 17.7… https://t.co/P574QdXcIp
@CVEnew
1 Nov 2024
434 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F42291CA-6AC4-4F11-AC23-B3FE25139483",
"versionEndExcluding": "17.7.1"
},
{
"criteria": "cpe:2.3:o:apple:ipados:18.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5B10D207-D2D8-465D-8A17-F77DC194BAA3"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "468FFF6F-879C-4AF4-BC42-6A1AA30441C3",
"versionEndExcluding": "17.7.1"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:18.0:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2A3F3148-F8DC-4F1F-A611-58CDF5149430"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA438ABE-99D4-49D3-A90A-959B8FDD4012",
"versionEndExcluding": "13.7.1"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "901D36FD-C5D9-428D-BE13-662AC380C9AE",
"versionEndExcluding": "14.7.1",
"versionStartIncluding": "14.0"
},
{
"criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D57FCAE-9B33-4532-BC69-BC3D35719EDB",
"versionEndExcluding": "18.1"
},
{
"criteria": "cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "15E4723D-CD2B-4486-A69C-27F843844A80",
"versionEndExcluding": "2.1"
},
{
"criteria": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5DB9A303-7D3D-4167-9F28-64AA4B1EC0E1",
"versionEndExcluding": "11.1"
}
],
"operator": "OR"
}
]
}
]