CVE-2024-40841
EUVD-2024-3867817.09.2024, 00:15
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7. Processing a maliciously crafted video file may lead to unexpected app termination.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| apple | macos | 14.0 ≤ 𝑥 < 14.7 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| apple | macos | 𝑥 < 14.7 | ADP |
| apple | macos | 𝑥 < 15 | ADP |
Common Weakness Enumeration
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.
- CWE-400 - Uncontrolled Resource ConsumptionThe software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.