CVE-2024-44126

7.8HIGH

Key Information

Vendor: Apple
Status: Mac OS; Visionos; iOS And iPad OS
Vendor: CVE Published:; 28 October 2024

Summary

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, iOS 17.7 and iPadOS 17.7, macOS Sonoma 14.7, visionOS 2, iOS 18 and iPadOS 18. Processing a maliciously crafted file may lead to heap corruption.

Affected Version(s)

macOS < 15

visionOS < 2

macOS < 13.7

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published.
Oct 28, 2024

Collectors

NVD DatabaseMitre Database