8330 matches found
CVE-2024-23259
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. Processing web content may lead to a denial-of-service...
CVE-2024-23259
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. Processing web content may lead to a denial-of-service...
CVE-2024-23263
A logic issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing maliciously crafted web content may prevent Content Security Policy from being...
CVE-2024-23263
A logic issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing maliciously crafted web content may prevent Content Security Policy from being...
CVE-2024-23255
An authentication issue was addressed with improved state management. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. Photos in the Hidden Photos Album may be viewed without authentication...
CVE-2024-23255
An authentication issue was addressed with improved state management. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. Photos in the Hidden Photos Album may be viewed without authentication...
CVE-2024-23255
CVE-2024-23255 describes an authentication issue in Apple devices where photos in the Hidden Photos Album could be viewed without authentication due to improved state management. Affected platforms include macOS Sonoma 14.4, iOS 17.4, and iPadOS 17.4; Apple patches are available in those versions...
CVE-2024-23280
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2024-23280
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2024-23280
The CVE-2024-23280 entry concerns an injection issue in WebKitGTK/WebKit2GTK where maliciously crafted web content could fingerprint a user. The core detail from connected sources shows the vulnerability affects WebKitGTK/WebKit2GTK components used in Linux/macOS ecosystems, with the underlying c...
CVE-2024-23297
CVE-2024-23297 affects Apple’s tvOS, iOS, iPadOS and watchOS prior to updates; root cause described as improved checks, with the issue fixed in tvOS 17.4, iOS 17.4, iPadOS 17.4 and watchOS 10.4. The vulnerability could allow a malicious application to access private information. Connected sources...
CVE-2024-23278
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4, watchOS 10.4. An app may be able to break out of its sandbox...
CVE-2024-23278
CVE-2024-23278 affects Apple platforms and was mitigated by updated checks to prevent sandbox escape. The NVD/NVD-derived entry states the fix is included in macOS Ventura 13.6.5, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, and tvOS 17.4. The descripti...
CVE-2024-23278
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4, watchOS 10.4. An app may be able to break out of its sandbox...
CVE-2024-0258
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges...
CVE-2024-0258
CVE-2024-0258 is an Apple memory-handling fix that affects multiple platforms. Connected sources indicate the issue is fixed in tvOS 17.4, iOS 17.4, iPadOS 17.4, macOS Sonoma 14.4 and watchOS 10.4. Apple security notes describe that an app may be able to execute arbitrary code outside its sandbox...
CVE-2024-0258
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges...
CVE-2024-23239
CVE-2024-23239 is a race condition affecting Apple platforms. The advisory notes an issue with improved state handling that may allow an app to leak sensitive user information. Affected versions include tvOS 17.4, iOS 17.4 / iPadOS 17.4, macOS Sonoma 14.4, and watchOS 10.4. Mitigation is to apply...
CVE-2024-23239
A race condition was addressed with improved state handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. An app may be able to leak sensitive user information...
CVE-2024-23242
A privacy issue was addressed by not logging contents of text fields. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. An app may be able to view Mail data...