- Vulnerability/
- CVE-2024-23264
CVE-2024-23264
First published: Tue Mar 05 2024(Updated: )
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Monterey 12.7.4, macOS Ventura 13.6.5, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, iOS 16.7.6 and iPadOS 16.7.6, tvOS 17.4. An application may be able to read restricted memory.
Credit: Meysam Firouzi @R00tkitsmm Trend Micro Zero Day InitiativeMeysam Firouzi @R00tkitsmm Trend Micro Zero Day InitiativeMeysam Firouzi @R00tkitsmm Trend Micro Zero Day InitiativeMeysam Firouzi @R00tkitsmm Trend Micro Zero Day InitiativeMeysam Firouzi @R00tkitsmm Trend Micro Zero Day Initiative product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple macOS Ventura | <13.6.5 | 13.6.5 |
| Apple tvOS | <17.4 | 17.4 |
| Apple macOS Sonoma | <14.4 | 14.4 |
| Apple macOS Monterey | <12.7.4 | 12.7.4 |
| Apple visionOS | <1.1 | 1.1 |
| Apple iOS | <17.4 | 17.4 |
| Apple iPadOS | <17.4 | 17.4 |
| Apple iOS | <16.7.6 | 16.7.6 |
| Apple iPadOS | <16.7.6 | 16.7.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT214082 (Advisory)
- https://support.apple.com/en-us/HT214085 (Advisory)
- https://support.apple.com/en-us/HT214086 (Advisory)
- https://support.apple.com/en-us/HT214083 (Advisory)
- https://support.apple.com/en-us/HT214087 (Advisory)
- http://seclists.org/fulldisclosure/2024/Mar/21
- http://seclists.org/fulldisclosure/2024/Mar/22
- http://seclists.org/fulldisclosure/2024/Mar/23
- http://seclists.org/fulldisclosure/2024/Mar/25
- http://seclists.org/fulldisclosure/2024/Mar/26
- https://support.apple.com/en-us/HT214081 (Advisory)
- https://support.apple.com/en-us/HT214084 (Advisory)
- https://support.apple.com/kb/HT214081
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2024-23262
- CVE-2024-23218
- CVE-2024-23286
- CVE-2024-23257
- CVE-2024-23225
- CVE-2024-23235
- CVE-2024-23265
- CVE-2024-23278
- CVE-2023-28826
- CVE-2024-23264
- CVE-2024-23283
- CVE-2024-23259
- CVE-2024-23231
- CVE-2024-23204
- CVE-2024-23203
- CVE-2024-23289
- CVE-2024-23246
- CVE-2024-23284
- CVE-2024-23263
- CVE-2024-23276
- CVE-2024-23227
- CVE-2024-23269
- CVE-2024-23247
- CVE-2024-23270
- CVE-2024-23234
- CVE-2024-23266
- CVE-2024-23201
- CVE-2024-23274
- CVE-2024-23268
- CVE-2024-23275
- CVE-2024-23267
- CVE-2024-23216
- CVE-2024-23230
- CVE-2024-23245
- CVE-2024-23217
- CVE-2024-23272
- CVE-2024-23291
- CVE-2024-23288
- CVE-2024-23250
- CVE-2022-48554
- CVE-2024-0258
- CVE-2024-23297
- CVE-2024-23296
- CVE-2024-23239
- CVE-2024-23290
- CVE-2024-23293
- CVE-2024-23241
- CVE-2024-23226
- CVE-2024-23254
- CVE-2024-23280
- CVE-2024-23244
- CVE-2024-23258
- CVE-2024-23295
- CVE-2024-23220
- CVE-2024-23233
- CVE-2024-23277
- CVE-2024-23248
- CVE-2024-23249
- CVE-2024-23205
- CVE-2024-23253
- CVE-2024-23279
- CVE-2024-23287
- CVE-2024-23285
- CVE-2023-48795
- CVE-2023-51384
- CVE-2023-51385
- CVE-2022-42816
- CVE-2023-42853
- CVE-2024-23255
- CVE-2024-23294
- CVE-2024-23273
- CVE-2024-23238
- CVE-2024-23232
- CVE-2024-23292
- CVE-2024-23242
- CVE-2024-23281
- CVE-2024-23260
- CVE-2024-23243
- CVE-2024-23240
- CVE-2024-23256
- agent/severity
- agent/type
- agent/description
- agent/author
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- collector/apple-support
- source/Apple
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/tags
- collector/nvd-api
- source/NVD
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- vendor/apple
- canonical/apple ios
- canonical/apple ipados
- canonical/apple macos ventura
- canonical/apple tvos
- canonical/apple macos monterey
- canonical/apple visionos
- canonical/apple macos sonoma