CVE-2024-27834

The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.

CVSS v3 8.1 HIGH

8.1^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.4 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
http://seclists.org/fulldisclosure/2024/May/10
http://seclists.org/fulldisclosure/2024/May/12
http://seclists.org/fulldisclosure/2024/May/16
http://seclists.org/fulldisclosure/2024/May/17
http://seclists.org/fulldisclosure/2024/May/9
http://www.openwall.com/lists/oss-security/2024/05/21/1
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ADCLQW54XN37VJZNYD3UKCYATJFIMYXG/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WKIXADCW3O4R2OOSDZGPU55XQFE6NA3M/
https://support.apple.com/en-us/HT214101
https://support.apple.com/en-us/HT214102
https://support.apple.com/en-us/HT214103
https://support.apple.com/en-us/HT214104
https://support.apple.com/en-us/HT214106

Configurations

No configuration.

History

No history.

Information

Published : 2024-05-14 15:13

Updated : 2024-07-03 01:51

NVD link : CVE-2024-27834

Mitre link : CVE-2024-27834

CVE.ORG link : CVE-2024-27834

JSON object : View

Products Affected

No product.

CWE

CWE-277

Insecure Inherited Permissions

{"id": "CVE-2024-27834", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.4}]}, "published": "2024-05-14T15:13:06.953", "references": [{"url": "http://seclists.org/fulldisclosure/2024/May/10", "source": "product-security@apple.com"}, {"url": "http://seclists.org/fulldisclosure/2024/May/12", "source": "product-security@apple.com"}, {"url": "http://seclists.org/fulldisclosure/2024/May/16", "source": "product-security@apple.com"}, {"url": "http://seclists.org/fulldisclosure/2024/May/17", "source": "product-security@apple.com"}, {"url": "http://seclists.org/fulldisclosure/2024/May/9", "source": "product-security@apple.com"}, {"url": "http://www.openwall.com/lists/oss-security/2024/05/21/1", "source": "product-security@apple.com"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ADCLQW54XN37VJZNYD3UKCYATJFIMYXG/", "source": "product-security@apple.com"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WKIXADCW3O4R2OOSDZGPU55XQFE6NA3M/", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214101", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214102", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214103", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214104", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT214106", "source": "product-security@apple.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-277"}]}], "descriptions": [{"lang": "en", "value": "The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication."}, {"lang": "es", "value": "El problema se solucion\u00f3 con controles mejorados. Este problema se solucion\u00f3 en iOS 17.5 y iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. Un atacante con capacidad de lectura y escritura arbitraria puede eludir la autenticaci\u00f3n de puntero."}], "lastModified": "2024-07-03T01:51:06.170", "sourceIdentifier": "product-security@apple.com"}