Apple Multiple Products Code Execution Vulnerability
Overdue
Apple / Multiple Products
Description
Apple iOS, iPadOS, macOS, tvOS, and watchOS contain an unspecified vulnerability that allows for code execution when processing a font file.
Required Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
References
- https://support.apple.com/en-us/HT213599, https://support.apple.com/en-us/HT213601, https://support.apple.com/en-us/HT213605, https://support.apple.com/en-us/HT213606, https://support.apple.com/en-us/HT213842, https://support.apple.com/en-us/HT213844, https://support.apple.com/en-us/HT213845
- https://nvd.nist.gov/vuln/detail/CVE-2023-41990
Additional Information
- Catalog Version
- 2025.01.24
- Catalog Released
- Jan. 24, 2025
- Days Until Due
- 0 days
- Last Updated
- 4 months, 1 week ago