CVE-2024-23270

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 8, 2024

Updated: Aug 9, 2024

Summary

CVE-2024-23270 is a recently identified vulnerability affecting multiple Apple operating systems, including macOS Monterey, macOS Ventura, and macOS Sonoma, as well as iOS and iPadOS. The issue stems from improper memory handling within the affected software. Malicious apps can exploit this vulnerability to execute arbitrary code with kernel privileges. Apple has addressed this security weakness in the latest updates for macOS Monterey (12.7.4), macOS Ventura (13.6.5), macOS Sonoma (14.4), iOS (17.4), and iPadOS (17.4), as well as tvOS (17.4). It is strongly recommended that users install these updates as soon as possible to safeguard their devices against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Apple (iPhone OS)
tvOS
MacOS
iPadOS
Apple TV

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners