VDB
CVE-2024-1580
CVE-2024-1580
PUBLISHED
Es besteht eine Schwachstelle in Apple Safari. Dieser Fehler besteht in der WebRTC-Komponente aufgrund eines Out-of-Bound-Write-Problems. Durch die Verarbeitung eines speziell gestalteten Bildes kann ein entfernter, anonymer Angreifer diese Schwachstelle zur Ausführung von beliebigem Progammcode ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.
EPSS 0.58% · 69.5th percentile
Risk Scores
EPSS Score
0.58%
69.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Apple Safari <17.4.1 | |
| Apple | Apple iOS <17.4.1 | |
| Apple | Apple iOS <16.7.7 | |
| Apple | Apple macOS <14.4.1 | |
| Apple | Apple iPadOS <17.4.1 | |
| Apple | Apple iPadOS <16.7.7 | |
| Apple | Apple macOS <13.6.6 |
Exploit Intelligence
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
…and 30 more exploits
Timeline
- Feb 19, 2024 CVE Published
- Feb 20, 2024 EPSS Score
- Mar 18, 2024 EPSS Score
- May 10, 2024 EPSS Score
- Jun 6, 2024 EPSS Score
- Jul 3, 2024 EPSS Score
- Aug 29, 2024 EPSS Score
- Sep 25, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 22, 2024 EPSS Score
- Dec 15, 2024 EPSS Score
- Jan 11, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0705.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0705 advisory
- https://support.apple.com/en-us/HT214095 advisory
- https://support.apple.com/en-us/HT214096 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0707.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0707 advisory
- https://support.apple.com/en-us/HT214097 advisory
- https://support.apple.com/en-us/HT214098 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0706.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0706 advisory
- https://support.apple.com/en-us/HT214094 advisory