vulnerability

OS X update for ImageIO (CVE-2024-54500)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:C/I:N/A:N)	2024-12-12	2024-12-12	2025-01-28

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:N)

Published

2024-12-12

Added

2024-12-12

Modified

2025-01-28

Description

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. Processing a maliciously crafted image may result in disclosure of process memory.

Solution(s)

apple-osx-upgrade-13_7_2apple-osx-upgrade-14_7_2apple-osx-upgrade-15_2

References

CVE-2024-54500
https://attackerkb.com/topics/CVE-2024-54500
URL-https://support.apple.com/en-us/121839
URL-https://support.apple.com/en-us/121840
URL-https://support.apple.com/en-us/121842

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today