CVE-2024-40777

Summary

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app termination.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOS0 < 17.6affected
ApplemacOS0 < 14.6affected
AppletvOS0 < 17.6affected
ApplevisionOS0 < 1.3affected
ApplewatchOS0 < 10.6affected

Weaknesses

  • Processing a maliciously crafted file may lead to unexpected app termination

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References