CVE-2024-44157

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Oct 11, 2024

Updated: Dec 12, 2024

CWE ID 787

CWE ID 120

Summary

CVE-2024-44157 is a stack buffer overflow vulnerability that has been addressed in Apple TV 1.5.0.152 for Windows and iTunes 12.13.3 for Windows. Maliciously crafted video files can exploit this issue, potentially resulting in unexpected system termination. The vulnerability was due to insufficient input validation. This issue could allow an attacker to execute arbitrary code if a user opens a specially crafted video file, which could lead to serious consequences, including system crashes or unauthorized access. The vulnerability has been mitigated by the latest software updates.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Apple iTunes

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners