Multiple vulnerabilities in Apple tvOS
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 19 |
| CVE-ID | CVE-2024-44239 CVE-2024-44244 CVE-2024-44296 CVE-2024-44277 CVE-2024-44252 CVE-2024-44258 CVE-2024-44285 CVE-2024-44255 CVE-2024-44297 CVE-2024-44215 CVE-2024-44282 CVE-2024-44302 CVE-2024-44240 CVE-2024-44273 CVE-2024-44232 CVE-2024-44233 CVE-2024-44234 CVE-2024-54538 CVE-2024-44212 |
| CWE-ID | CWE-532 CWE-119 CWE-254 CWE-20 CWE-61 CWE-22 CWE-125 CWE-200 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #6 is available. |
| Vulnerable software |
tvOS Operating systems & Components / Operating system |
| Vendor | Apple Inc. |
Security Bulletin
This security bulletin contains information about 19 vulnerabilities.
1) Inclusion of Sensitive Information in Log Files
EUVDB-ID: #VU99377
Risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-44239
CWE-ID:
CWE-532 - Information Exposure Through Log Files
Exploit availability: No
DescriptionThe vulnerability allows a local application to gain access to sensitive information.
The vulnerability exists due to the OS kernel writes kernel state into the log files. A local application can gain access to sensitive kernel information.
Install update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Buffer overflow
EUVDB-ID: #VU99420
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-44244
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in WebKit. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Security features bypass
EUVDB-ID: #VU99419
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44296
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to improper checks in WebKit. A remote attacker can trick the victim into visiting a specially crafted website and prevent Content Security Policy from being enforced.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Buffer overflow
EUVDB-ID: #VU99413
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-44277
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local application to escalate privileges on the system.
The vulnerability exists due to a boundary error in Pro Res. A local application can trigger memory corruption and execute arbitrary code with elevated privileges.
Install update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Input validation error
EUVDB-ID: #VU99423
Risk: Medium
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44252
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to insufficient validation of user-supplied input when handling backup files in MobileBackup. A remote attacker can trick the victim into using a specially crafted backup file and execute arbitrary code on the system.
Install update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) UNIX symbolic link following
EUVDB-ID: #VU99422
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Green]
CVE-ID: CVE-2024-44258
CWE-ID:
CWE-61 - UNIX Symbolic Link (Symlink) Following
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to a symlink following issue in Managed Configuration. A remote attacker can trick the victim into using a malicious backup file, modify protected system files and compromise the affected system.
Install update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
7) Buffer overflow
EUVDB-ID: #VU99407
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-44285
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local application to escalate privileges on the system.
The vulnerability exists due to a boundary error in IOSurface. A local application can trigger memory corruption and execute arbitrary code on the target system.
Install update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Path traversal
EUVDB-ID: #VU99359
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-44255
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: No
DescriptionThe vulnerability allows a local application to escalate privileges on the system.
The vulnerability exists due to input validation error when handling shortcuts in App Support. A local application can run arbitrary shortcuts without user consent.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Buffer overflow
EUVDB-ID: #VU99373
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-44297
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to crash the application.
The vulnerability exists due to a boundary error when processing files in ImageIO. A remote attacker can create a specially crafted Office document, trick the victim into opening it, trigger memory corruption and perform a denial of service (DoS) attack.
Install update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Out-of-bounds read
EUVDB-ID: #VU99372
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44215
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in ImageIO. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger an out-of-bounds read error and read contents of memory on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Out-of-bounds read
EUVDB-ID: #VU99370
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44282
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Foundation. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger an out-of-bounds read error and read contents of memory on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) Out-of-bounds read
EUVDB-ID: #VU99366
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44302
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in CoreText. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger an out-of-bounds read error and read contents of memory on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
13) Out-of-bounds read
EUVDB-ID: #VU99365
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44240
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in CoreText. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger an out-of-bounds read error and read contents of memory on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
14) UNIX symbolic link following
EUVDB-ID: #VU99402
Risk: Low
CVSSv4.0: 5.8 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-44273
CWE-ID:
CWE-61 - UNIX Symbolic Link (Symlink) Following
Exploit availability: No
DescriptionThe vulnerability allows a local application to escalate privileges on the system.
The vulnerability exists due to a symlink following issue in CoreMedia Playback. A local application can create a specially crafted symbolic link to a critical file on the system and overwrite it with privileges of the application.
Successful exploitation of this vulnerability may result in privilege escalation.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 17.0 - 18.0
CPE2.3- cpe:2.3:o:apple:tvos:17.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:17.6.1:*:*:*:*:*:*:*
https://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
15) Buffer overflow
EUVDB-ID: #VU103068
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44232
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error in AppleAVD when handling media files. A remote attacker can create a specially crafted media file, trick the victim into opening it, trigger memory corruption and perform a denial of service (DoS) attack.
Install update from vendor's website.
Vulnerable software versionstvOS: 18.0
CPE2.3 External linkshttps://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
16) Buffer overflow
EUVDB-ID: #VU103069
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44233
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error in AppleAVD when handling media files. A remote attacker can create a specially crafted media file, trick the victim into opening it, trigger memory corruption and perform a denial of service (DoS) attack.
Install update from vendor's website.
Vulnerable software versionstvOS: 18.0
CPE2.3 External linkshttps://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
17) Buffer overflow
EUVDB-ID: #VU103070
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44234
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error in AppleAVD when handling media files. A remote attacker can create a specially crafted media file, trick the victim into opening it, trigger memory corruption and perform a denial of service (DoS) attack.
Install update from vendor's website.
Vulnerable software versionstvOS: 18.0
CPE2.3 External linkshttps://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
18) Input validation error
EUVDB-ID: #VU103073
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-54538
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input within the Security component. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionstvOS: 18.0
CPE2.3 External linkshttps://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
19) Information disclosure
EUVDB-ID: #VU103067
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-44212
CWE-ID:
CWE-200 - Exposure of sensitive information to an unauthorized actor
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to incorrect handling of cookie origin. A remote attacker can gain access to cookies set by another website.
Install update from vendor's website.
Vulnerable software versionstvOS: 18.0
CPE2.3 External linkshttps://support.apple.com/en-us/121569
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
