CVE-2024-23222

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 23, 2024

Updated: Aug 14, 2024

CWE ID 843

Summary

CVE-2024-23222 is a type confusion vulnerability that Apple has addressed in iOS 17.3, iPadOS 17.3, macOS Sonoma 14.3, and tvOS 17.3. Maliciously crafted web content can be processed to exploit this issue, leading to arbitrary code execution. Apple has reported that this vulnerability has already been exploited. The flaw has been resolved with improved checks to prevent such unintended behavior.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uIDPNz
https://www.cve.org/CVERecord?id=CVE-2024-23222
https://nvd.nist.gov/vuln/detail/CVE-2024-23222

Back to Vulnerability Database

CVE-2024-23222

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations