9 matches found
About the security content of macOS Ventura 13.6.7
About the security content of macOS Ventura 13.6.7 This document describes the security content of macOS Ventura 13.6.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...
About the security content of iOS 16.7.8 and iPadOS 16.7.8
About the security content of iOS 16.7.8 and iPadOS 16.7.8 This document describes the security content of iOS 16.7.8 and iPadOS 16.7.8. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...
Apple Rolls Out Critical Updates to Address Zero-Day Flaws
Summary: Apple has addressed two zero-day vulnerabilities in iOS, namely CVE-2024-23225 and CVE-2024-23296. These vulnerabilities were exploited in attacks targeting Mobile devices, providing attackers with arbitrary kernel read and write privileges, enabling them to bypass kernel memory...
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-23225 Apple iOS and iPadOS Memory Corruption Vulnerability CVE-2024-23296 Apple iOS and iPadOS Memory Corruption Vulnerability These types of vulnerabilities a...
CVE-2024-23296
creationtimestamp| type| source ---|---|--- 2024-03-05 21:26:36+00:00| seen| https://t.me/ctinow/200707 2024-03-05 21:26:48+00:00| seen| https://t.me/ctinow/200716 2024-03-06 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1239 2024-03-06 06:58:06+00:00| exploited|...
CVE-2024-23296
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.6, macOS Sonoma 14.4, macOS Ventura 13.6.7, tvOS 17.4, visionOS 1.1, watchOS 10.4. An attacker with arbitrary kernel read and write...
CVE-2024-23296
CVE-2024-23296 is associated with RTKit in Apple platforms (notably macOS Monterey lineage in the Apple security content). The vulnerability is described as a memory corruption issue that could allow an attacker with kernel read/write capability to bypass kernel memory protections. Apple’s note i...
VulnCheck KEV: CVE-2024-23296
Apple iOS, iPadOS, macOS, tvOS, and watchOS RTKit contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections...
CVE-2024-23296
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 17.4 and iPadOS 17.4. An attacker with arbitrary kernel read and write capability may be able to bypass kernel memory protections. Apple is aware of a report that this issue may have been exploited. Recen...