Memory Handling Vulnerability in macOS Products by Apple
CVE-2024-23209

8.8HIGH

Key Information:

Vendor: Apple
Status: macOS
Vendor: CVE Published:; 23 January 2024

Summary

A vulnerability exists in Apple’s macOS Sonoma, specifically originating from inadequate memory handling during the processing of web content. This flaw could potentially lead to arbitrary code execution, enabling malicious actors to manipulate system resources or gain unauthorized access to critical system functions. The issue has been addressed with recent updates in macOS Sonoma 14.3, emphasizing the importance of keeping systems updated to mitigate risks associated with such vulnerabilities.

Affected Version(s)

macOS < 14.3

References

https://support.apple.com/en-us/HT214061

http://seclists.org/fulldisclosure/2024/Jan/36

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 23, 2024
Vulnerability Reserved
Jan 12, 2024