CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-23258: An out-of-bounds read was addressed with improved input validation. This issue is fixed in visionOS 1.1, macOS Sonoma 14.4. Processing an image may...
Description
An out-of-bounds read was addressed with improved input validation. This issue is fixed in visionOS 1.1, macOS Sonoma 14.4. Processing an image may lead to arbitrary code execution.
Classification
CVE ID: CVE-2024-23258
Affected Products
Vendor: Apple
Product: visionOS
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.05% (probability of being exploited)
EPSS Percentile: 21.95% (scored less or equal to compared to others)
EPSS Date: 2025-03-14 (when was this score calculated)
References
https://support.apple.com/en-us/HT214087https://support.apple.com/en-us/HT214084
http://seclists.org/fulldisclosure/2024/Mar/21
http://seclists.org/fulldisclosure/2024/Mar/26