Lucene search

K
vulnrichmentAppleVULNRICHMENT:CVE-2024-27833
HistoryJun 10, 2024 - 8:56 p.m.

CVE-2024-27833

2024-06-1020:56:35
apple
github.com
15
integer overflow
input validation
arbitrary code execution
web content
cve-2024-27833
security fix
tvos 17.5
ios 16.7.8
ipados 16.7.8
visionos 1.2
safari 17.5

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

36.2%

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 17.5, iOS 16.7.8 and iPadOS 16.7.8, visionOS 1.2, Safari 17.5, iOS 17.5 and iPadOS 17.5. Processing maliciously crafted web content may lead to arbitrary code execution.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "iphone_os",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "17.5",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "16.7",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "ipad_os",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "17.5",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "16.7",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:a:apple:visionos:*:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "visionos",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "1.2",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "safari",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "17.5",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*"
    ],
    "vendor": "apple",
    "product": "tvos",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "17.5",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

36.2%

SSVC

Exploitation

none

Automatable

no

Technical Impact

total