CVE-2024-23212

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 23, 2024

Updated: Jan 30, 2024

Summary

CVE-2024-23212 is a critical vulnerability affecting multiple Apple operating systems, including watchOS 10.3, tvOS 17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, macOS Ventura 13.6.4, and macOS Monterey 12.7.3. The issue was rooted in insufficient memory handling, allowing a malicious app to execute arbitrary code with kernel privileges. This vulnerability could lead to serious security implications, making it essential for users to install the respective security updates as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

tvOS
Apple Watch
MacOS
Apple (iPhone OS)
iPadOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uIDzsJ
https://www.cve.org/CVERecord?id=CVE-2024-23212
https://nvd.nist.gov/vuln/detail/CVE-2024-23212

Back to Vulnerability Database