Lucene search

[email protected]NVD:CVE-2024-40845

HistorySep 17, 2024 - 12:15 a.m.

CVE-2024-40845

2024-09-1700:15:49

[email protected]

web.nvd.nist.gov

cve-2024-40845

memory handling

macos sonoma

macos sequoia

video file

unexpected termination

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

Percentile

13.4%

JSON

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. Processing a maliciously crafted video file may lead to unexpected app termination.

Affected configurations

Nvd

Node

applemacosRange<14.7

VendorProductVersionCPE
applemacos*cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	macos	*	cpe:2.3:o:apple:macos::::::::

References

support.apple.com/en-us/121238

support.apple.com/en-us/121247

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

Percentile

13.4%

JSON

Related for NVD:CVE-2024-40845

cvelist1 vulnrichment1 cve1 openvas1 nessus1