CVE-2024-40789

Description

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.

Reserved 2024-07-10 | Published 2024-07-29 | Updated 2024-10-30 | Assigner apple

Problem types

Processing maliciously crafted web content may lead to an unexpected process crash

Product status

Any version before 17.6
affected

Any version before 17.6
affected

Any version before 16.7
affected

Any version before 10.6
affected

Any version before 14.6
affected

Any version before 1.3
affected

Any version before 17.6
affected

References

support.apple.com/en-us/HT214121

support.apple.com/en-us/HT214117

support.apple.com/en-us/HT214116

support.apple.com/en-us/HT214124

support.apple.com/en-us/HT214119

support.apple.com/en-us/HT214123

support.apple.com/en-us/HT214122

support.apple.com/kb/HT214121

seclists.org/fulldisclosure/2024/Jul/16

seclists.org/fulldisclosure/2024/Jul/15

seclists.org/fulldisclosure/2024/Jul/23

seclists.org/fulldisclosure/2024/Jul/21

seclists.org/fulldisclosure/2024/Jul/17

seclists.org/fulldisclosure/2024/Jul/22

seclists.org/fulldisclosure/2024/Jul/18

cve.org (CVE-2024-40789)

nvd.nist.gov (CVE-2024-40789)

Download JSON