Lucene search

K
nvd[email protected]NVD:CVE-2024-27791
HistoryApr 24, 2024 - 5:15 p.m.

CVE-2024-27791

2024-04-2417:15:47
CWE-119
web.nvd.nist.gov
3
cve-2024-27791
security patch
ios 17.3
ipados 17.3
tvos 17.3
macos ventura 13.6.4
ios 16.7.5
ipados 16.7.5
macos monterey 12.7.3
macos sonoma 14.3
coprocessor memory

CVSS3

5.8

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L

AI Score

7.4

Confidence

High

EPSS

0

Percentile

10.3%

The issue was addressed with improved checks. This issue is fixed in iOS 17.3 and iPadOS 17.3, tvOS 17.3, macOS Ventura 13.6.4, iOS 16.7.5 and iPadOS 16.7.5, macOS Monterey 12.7.3, macOS Sonoma 14.3. An app may be able to corrupt coprocessor memory.

CVSS3

5.8

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L

AI Score

7.4

Confidence

High

EPSS

0

Percentile

10.3%