62 matches found
CVE-2024-40794
This issue was addressed through improved state management. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Private Browsing tabs may be accessed without authentication...
CVE-2024-40777
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app termination...
CVE-2024-40784
An integer overflow was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app...
CVE-2024-27871
A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. An app may be able to access protected user data...
CVE-2024-27863
An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. A local attacker may be able to determine kernel memory layout...
CVE-2024-40777
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app termination...
CVE-2024-27871
A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. An app may be able to access protected user data...
CVE-2024-27871
CVE-2024-27871 describes a path handling issue in Apple platforms that was addressed with improved validation. The description indicates that an app may have been able to access protected user data due to this path handling problem. Public fix details show the issue is resolved in macOS Sonoma 14...
CVE-2024-27871
A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. An app may be able to access protected user data...
CVE-2024-40794
This issue was addressed through improved state management. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Private Browsing tabs may be accessed without authentication...
CVE-2024-40794
CVE-2024-40794 affects Apple Safari on macOS Sonoma 14.6, iOS 17.6, and iPadOS 17.6. The issue, described as a failure in state management, allowed Private Browsing tabs to be accessed without authentication. Apple patched this by shipping fixes in macOS Sonoma 14.6, iOS 17.6, and iPadOS 17.6 (an...
CVE-2024-40794
This issue was addressed through improved state management. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Private Browsing tabs may be accessed without authentication...
CVE-2024-40812
A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, visionOS 1.3, watchOS 10.6. A shortcut may be able to bypass Internet permission requirements...
CVE-2024-40824
This issue was addressed through improved state management. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, watchOS 10.6. An app may be able to bypass Privacy preferences...
CVE-2024-40815
CVE-2024-40815 describes a race condition addressed by added validation. Apple states the issue is fixed in macOS Ventura 13.6.8, macOS Sonoma 14.6, iOS 17.6/iPadOS 17.6, watchOS 10.6, and tvOS 17.6. A malicious attacker with arbitrary read/write access could potentially bypass Pointer Authentica...
CVE-2024-40799
CVE-2024-40799 is an out-of-bounds read vulnerability fixed by Apple in multiple OS updates. Affected platforms include iOS 16.7.9 / 17.6, iPadOS 16.7.9 / 17.6, macOS Ventura 13.6.8, Monterey 12.7.6, macOS Sonoma 14.6, and the watchOS 10.6, tvOS 17.6, visionOS 1.3 lineups. The issue occurs when p...
CVE-2024-40784
An integer overflow was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app...
CVE-2024-40784
CVE-2024-40784 involves an integer overflow that was addressed by improved input validation. The issue affects Apple platforms when processing a maliciously crafted file, potentially causing an unexpected app termination. Public disclosures in connected sources (Red Hat, CIRCL, Nessus/OPENVAS sum...
CVE-2024-40788
CVE-2024-40788 is a local, type-confusion vulnerability in memory handling that could allow a local attacker to cause an unexpected system shutdown . The vulnerability is fixed in: iOS/iPadOS 16.7.9 and 17.6, macOS Ventura 13.6.8, macOS Monterey 12.7.6, macOS Sonoma 14.6, and on watchOS 10.6, tvO...
CVE-2024-40788
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, visionOS 1.3, watchOS 10.6. A local attacker may be able to cause unexpecte...