CVE-2024-27857

HIGH Year: 2024
CVSS v3 Score
7.1
High
Weakness Type
CWE-119
View all →

Vulnerability Description

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in visionOS 1.2, macOS Sonoma 14.5, tvOS 17.5, iOS 17.5 and iPadOS 17.5. A remote attacker may be able to cause unexpected app termination or arbitrary code execution.

Related Vulnerabilities

CVE-2015-5261

HIGH
CVSS:7.1(High)

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.

CWE-1192015

CVE-2016-4743

HIGH
CVSS:7.1(High)

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves th...

CWE-1192016

CVE-2016-4998

HIGH
CVSS:7.1(High)

The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensi...

CWE-1192016

CVE-2017-1105

HIGH
CVSS:7.1(High)

IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) is vulnerable to a buffer overflow that could allow a local user to overwrite DB2 files or cause a denial of...

CWE-1192017

CVE-2017-13820

HIGH
CVSS:7.1(High)

An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "ATS" component. It allows remote attackers to obtain sensitive information from process mem...

CWE-1192017

CVE-2017-13850

HIGH
CVSS:7.1(High)

An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Font Importer" component. It allows remote attackers to cause a denial of service (memory c...

CWE-1192017