CVE-2024-44142

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 30, 2025

Updated: Feb 2, 2025

Summary

CVE-2024-44142 is a vulnerability affecting GarageBand, Apple's digital audio workstation. The issue was resolved with enhanced bounds checks in version 10.4.12. This security flaw could be exploited by processing a specially crafted image, potentially leading to arbitrary code execution. Similar vulnerabilities can pose a significant risk if not addressed, as they can enable attackers to gain unauthorized access or control system functions. It is recommended that users upgrade to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

GarageBand

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/x7jd_Z
https://www.cve.org/CVERecord?id=CVE-2024-44142
https://nvd.nist.gov/vuln/detail/CVE-2024-44142

Back to Vulnerability Database