exploitDog

GHSA-2vfj-ww29-h4x2

Опубликовано: 23 янв. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.5 and iPadOS 16.7.5, watchOS 10.2, macOS Ventura 13.6.4, macOS Sonoma 14.2, macOS Monterey 12.7.3, iOS 17.2 and iPadOS 17.2. Processing a maliciously crafted image may result in disclosure of process memory.

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.5 and iPadOS 16.7.5, watchOS 10.2, macOS Ventura 13.6.4, macOS Sonoma 14.2, macOS Monterey 12.7.3, iOS 17.2 and iPadOS 17.2. Processing a maliciously crafted image may result in disclosure of process memory.

Ссылки

EPSS

Процентиль: 5%

0.00023

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2023-42888

CVSS3: 5.5

nvd

около 2 лет назад

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.5 and iPadOS 16.7.5, watchOS 10.2, macOS Ventura 13.6.4, macOS Sonoma 14.2, macOS Monterey 12.7.3, iOS 17.2 and iPadOS 17.2. Processing a maliciously crafted image may result in disclosure of process memory.

BDU:2024-01503

CVSS3: 5.5

fstec

около 2 лет назад

Уязвимость компонента ImageIO операционных систем iOS, watchOS, macOS, iPadOS, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 5%

0.00023

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-200