Professional Documents
Culture Documents
Software Affected
Overview
Remote Code Execution vulnerability has been reported in Apple Products which could be exploited by a remote attacker to
execute arbitrary code on the targeted system.
Description
This vulnerability exist in Apple Products due to out-of-bounds write issue in WebRTC and CoreMedia. A remote attacker could
exploit this vulnerability by persuading a victim to visit specially crafted request.
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the targeted system.
Solution
https://support.apple.com/en-us/HT214094
https://support.apple.com/en-us/HT214095
https://support.apple.com/en-us/HT214096
https://support.apple.com/en-us/HT214097
https://support.apple.com/en-us/HT214098
Vendor Information
Apple
https://support.apple.com/en-us/HT214093
https://support.apple.com/en-us/HT214094
https://support.apple.com/en-us/HT214095
https://support.apple.com/en-us/HT214096
https://support.apple.com/en-us/HT214097
https://support.apple.com/en-us/HT214098
References
https://support.apple.com/en-us/HT214093
https://support.apple.com/en-us/HT214094
https://support.apple.com/en-us/HT214095
https://support.apple.com/en-us/HT214096
about:blank 1/2
4/3/24, 5:42 PM CERT-In Vulnerability Notes
https://support.apple.com/en-us/HT214097
https://support.apple.com/en-us/HT214098
CVE Name
CVE-2024-1580
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Email: info@cert-in.org.in
Phone: +91-11-22902657
Postal address
about:blank 2/2