CVE-2024-54478

EUVD-2024-52583
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.4, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sonoma 14.7.2, macOS Sequoia 15.2. Processing maliciously crafted web content may lead to an unexpected process crash.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
CISA-ADPADP
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
Affected Products (NVD)
VendorProductVersion
appleipados
𝑥
< 17.7.4
appleipados
18.0 ≤
𝑥
< 18.2
appleiphone_os
𝑥
< 18.2
applemacos
𝑥
< 14.7.2
applemacos
15.0 ≤
𝑥
< 15.2
appletvos
𝑥
< 18.2
applevisionos
𝑥
< 2.2
applewatchos
𝑥
≤ 11.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.apple.com/en-us/121837
https://support.apple.com/en-us/121839
https://support.apple.com/en-us/121840
https://support.apple.com/en-us/121843
https://support.apple.com/en-us/121844
https://support.apple.com/en-us/121845
https://support.apple.com/en-us/122067
http://seclists.org/fulldisclosure/2025/Jan/14