Lucene search

K
vulnrichmentAppleVULNRICHMENT:CVE-2024-40789
HistoryJul 29, 2024 - 10:16 p.m.

CVE-2024-40789

2024-07-2922:16:57
apple
github.com
4
ios 16.7.9
ipados 16.7.9
safari 17.6
watchos 10.6
tvos 17.6
visionos 1.3
macos sonoma 14.6
unexpected process crash
maliciously crafted web content
cve-2024-40789
bounds checking

AI Score

5.8

Confidence

Low

EPSS

0.001

Percentile

49.8%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "Safari",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "lessThan": "17.6",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "lessThan": "17.6",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "lessThan": "16.7",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "watchOS",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "lessThan": "10.6",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "macOS",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "lessThan": "14.6",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "visionOS",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "lessThan": "1.3",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "tvOS",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "lessThan": "17.6",
        "versionType": "custom"
      }
    ]
  }
]

AI Score

5.8

Confidence

Low

EPSS

0.001

Percentile

49.8%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial