The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, watchOS 10.5, tvOS 17.5, macOS Ventura 13.6.7, visionOS 1.2. An app may be able to execute arbitrary code with kernel privileges.

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

No data.

No data.

No data.

References
Link Providers
https://support.apple.com/en-us/120898 cve-icon cve-icon
https://support.apple.com/en-us/120899 cve-icon cve-icon
https://support.apple.com/en-us/120900 cve-icon cve-icon
https://support.apple.com/en-us/120901 cve-icon cve-icon
https://support.apple.com/en-us/120902 cve-icon cve-icon
https://support.apple.com/en-us/120903 cve-icon cve-icon
https://support.apple.com/en-us/120905 cve-icon cve-icon
https://support.apple.com/en-us/120906 cve-icon cve-icon
History

Wed, 15 Jan 2025 19:45:00 +0000

Type Values Removed Values Added
Description The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, watchOS 10.5, tvOS 17.5, macOS Ventura 13.6.7, visionOS 1.2. An app may be able to execute arbitrary code with kernel privileges.
References
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2025-01-15T19:35:58.395Z

Updated: 2025-01-15T19:35:58.395Z

Reserved: 2024-07-10T17:11:04.686Z

Link: CVE-2024-40771

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2025-01-15T20:15:27.597

Modified: 2025-01-15T20:15:27.597

Link: CVE-2024-40771

cve-icon Redhat

No data.