vulnerability

OS X update for Metal (CVE-2024-23264)

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:N/A:N)

Published

Mar 8, 2024

Added

Mar 8, 2024

Modified

Apr 6, 2026

Description

A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4, visionOS 1.1. An application may be able to read restricted memory.

Solutions

apple-osx-upgrade-12_7_4apple-osx-upgrade-13_6_5apple-osx-upgrade-14_4

References

CVE-2024-23264
https://attackerkb.com/topics/CVE-2024-23264
CWE-125
EUVD-EUVD-2024-20783
https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-20783
https://support.apple.com/en-us/120884
https://support.apple.com/en-us/120886
https://support.apple.com/en-us/120895

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report