← Zuruck zu CVEs
CVE-2023-40414
CRITICAL9.8
Beschreibung
A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 10, iOS 17 and iPadOS 17, tvOS 17, macOS Sonoma 14, Safari 17. Processing web content may lead to arbitrary code execution.
CVE Details
CVSS v3.1 Bewertung9.8
SchweregradCRITICAL
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht1/10/2024
Zuletzt geandert6/20/2025
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
apple:ipadosapple:iphone_osapple:macosapple:safariapple:tvosapple:watchos
Schwachen (CWE)
CWE-416CWE-416
Referenzen
http://www.openwall.com/lists/oss-security/2024/02/05/8(product-security@apple.com)
https://support.apple.com/en-us/HT213936(product-security@apple.com)
https://support.apple.com/en-us/HT213937(product-security@apple.com)
https://support.apple.com/en-us/HT213938(product-security@apple.com)
https://support.apple.com/en-us/HT213940(product-security@apple.com)
https://support.apple.com/en-us/HT213941(product-security@apple.com)
http://www.openwall.com/lists/oss-security/2024/02/05/8(af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213936(af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213937(af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213938(af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213940(af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213941(af854a3a-2127-422b-91ae-364da2661108)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.