Apple Multiple Products Memory Corruption Vulnerability
Overdue
Apple / Multiple Products
CWE-787
Description
Apple iOS, iPadOS, macOS, tvOS, watchOS, and visionOS kernel contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections.
Required Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
References
- https://support.apple.com/en-us/HT214081, https://support.apple.com/en-us/HT214082, https://support.apple.com/en-us/HT214083, https://support.apple.com/en-us/HT214084, https://support.apple.com/en-us/HT214085, https://support.apple.com/en-us/HT214086, https://support.apple.com/en-us/HT214087, https://support.apple.com/en-us/HT214088
- https://nvd.nist.gov/vuln/detail/CVE-2024-23225
Additional Information
- Catalog Version
- 2025.01.24
- Catalog Released
- Jan. 24, 2025
- Days Until Due
- 0 days
- Last Updated
- 7 months, 2 weeks ago