CVE-2024-44240

Published Oct 28, 2024

Last updated 19 days ago

CVSS medium 6.5

Overview

Description
The issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, visionOS 2.1. Processing a maliciously crafted font may result in the disclosure of process memory.
Source
product-security@apple.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.5
Impact score
3.6
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Severity
MEDIUM

Social media

Hype score
Not currently trending

  1. 8 vulns in Apple October 2024 security releases: sips: CVE-2024-44236: RCE CVE-2024-44237: RCE CVE-2024-44279: info disc CVE-2024-44281: info disc CVE-2024-44283: info disc CoreText: CVE-2024-44240: info disc CVE-2024-44302: info disc Foundation: CVE-2024-44282: info disc

    @hosselot

    28 Oct 2024

    3134 Impressions

    3 Retweets

    36 Likes

    7 Bookmarks

    0 Replies

    1 Quote

References