Lucene search
HistoryMar 08, 2024 - 2:15 a.m.
CVE-2024-23258
cve-2024-23258
arbitrary code execution
image processing
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
High
EPSS
0
Percentile
15.5%
An out-of-bounds read was addressed with improved input validation. This issue is fixed in visionOS 1.1, macOS Sonoma 14.4. Processing an image may lead to arbitrary code execution.
Related
cve
cve
CVE-2024-23258
2024-03-08 02:15:48
prion
prion
Input validation
2024-03-08 02:15:00
cvelist
cvelist
CVE-2024-23258
2024-03-08 01:36:03
vulnrichment
vulnrichment
CVE-2024-23258
2024-03-08 01:36:03
apple
apple
About the security content of visionOS 1.1
2024-03-07 00:00:00
About the security content of macOS Sonoma 14.4
2024-03-07 00:00:00
openvas
openvas
Apple Mac OS X Security Update (HT214084)
2024-03-22 00:00:00
nessus
nessus
macOS 14.x < 14.4 Multiple Vulnerabilities (HT214084)
2024-03-07 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
High
EPSS
0
Percentile
15.5%
Related for NVD:CVE-2024-23258