Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cisa_kevCISACISA-KEV-CVE-2024-23225
HistoryMar 06, 2024 - 12:00 a.m.

Apple Multiple Products Memory Corruption Vulnerability

2024-03-0600:00:00
CISA
www.cisa.gov
9
apple
memory corruption
vulnerability
ios
ipados
macos
tvos
watchos
visionos
kernel
read
write
bypass
memory protections

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

High

EPSS

0.002

Percentile

58.9%

JSON

Apple iOS, iPadOS, macOS, tvOS, watchOS, and visionOS kernel contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections.

Related

nvd 1
prion 1
vulnrichment 1
cve 1
attackerkb 1
cvelist 1
hivepro 1
malwarebytes 1
thn 1
krebs 1
apple 8
openvas 3
nessus 3
nvd
nvd
CVE-2024-23225
2024-03-05 20:16:01
prion
prion
Memory corruption
2024-03-05 20:16:00
vulnrichment
vulnrichment
CVE-2024-23225
2024-03-05 19:24:12
cve
cve
CVE-2024-23225
2024-03-05 20:16:01
attackerkb
attackerkb
CVE-2024-23225
2024-03-05 00:00:00
cvelist
cvelist
CVE-2024-23225
2024-03-05 19:24:12
hivepro
hivepro
Apple Rolls Out Critical Updates to Address Zero-Day Flaws
2024-03-06 17:58:01
malwarebytes
malwarebytes
Update your iPhones and iPads now: Apple patches security vulnerabilities in iOS and iPadOS
2024-03-06 12:45:11
thn
thn
Urgent: Apple Issues Critical Updates for Actively Exploited Zero-Day Flaws
2024-03-06 05:54:00
krebs
krebs
Patch Tuesday, March 2024 Edition
2024-03-12 20:36:33
apple
apple
About the security content of visionOS 1.1
2024-03-07 00:00:00
About the security content of iOS 16.7.6 and iPadOS 16.7.6
2024-03-05 00:00:00
About the security content of tvOS 17.4
2024-03-07 00:00:00
openvas
openvas
Apple Mac OS X Security Update (HT214083)
2024-03-22 00:00:00
Apple Mac OS X Security Update (HT214085)
2024-03-22 00:00:00
Apple Mac OS X Security Update (HT214084)
2024-03-22 00:00:00
nessus
nessus
macOS 12.x < 12.7.4 Multiple Vulnerabilities (HT214083)
2024-03-07 00:00:00
macOS 13.x < 13.6.5 Multiple Vulnerabilities (HT214085)
2024-03-07 00:00:00
macOS 14.x < 14.4 Multiple Vulnerabilities (HT214084)
2024-03-07 00:00:00

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

High

EPSS

0.002

Percentile

58.9%

JSON
Related for CISA-KEV-CVE-2024-23225
nvd1prion1vulnrichment1cve1attackerkb1cvelist1hivepro1malwarebytes1thn1krebs1apple8openvas3nessus3