CVE-2024-0258

HIGH Year: 2024
CVSS v3 Score
8.2
High
Weakness Type
CWE-284
View all →

Vulnerability Description

The issue was addressed with improved memory handling. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.

Related Vulnerabilities

CVE-2015-8550

HIGH
CVSS:8.2(High)

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service (host OS crash) or gain privileges by writing to memory shared between the frontend ...

CWE-2842015

CVE-2016-5482

HIGH
CVSS:8.2(High)

Unspecified vulnerability in the Oracle Commerce Guided Search component in Oracle Commerce 6.2.2, 6.3.0, 6.4.1.2, and 6.5.0 through 6.5.2 allows remote attackers to affect confidentiality and integri...

CWE-2842016

CVE-2016-5491

HIGH
CVSS:8.2(High)

Unspecified vulnerability in the Oracle Commerce Service Center component in Oracle Commerce 10.0.3.5 and 10.2.0.5 allows remote attackers to affect confidentiality and integrity via unknown vectors.

CWE-2842016

CVE-2016-5557

HIGH
CVSS:8.2(High)

Unspecified vulnerability in the Oracle Advanced Pricing component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect confidentiality and inte...

CWE-2842016

CVE-2016-5586

HIGH
CVSS:8.2(High)

Unspecified vulnerability in the Oracle Email Center component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect confidentiality and integrit...

CWE-2842016

CVE-2016-5587

HIGH
CVSS:8.2(High)

Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1 through 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality an...

CWE-2842016