{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2024-23257","assignerOrgId":"286789f9-fbc2-4510-9f9a-43facdede74c","state":"PUBLISHED","assignerShortName":"apple","dateReserved":"2024-01-12T22:22:21.488Z","datePublished":"2024-03-08T01:35:24.108Z","dateUpdated":"2026-04-02T18:09:37.895Z"},"containers":{"cna":{"problemTypes":[{"descriptions":[{"lang":"en","description":"Processing an image may result in disclosure of process memory"}]}],"affected":[{"vendor":"Apple","product":"iOS and iPadOS","versions":[{"version":"0","status":"affected","lessThan":"16.7.6","versionType":"custom"}]},{"vendor":"Apple","product":"macOS","versions":[{"version":"0","status":"affected","lessThan":"12.7.4","versionType":"custom"},{"version":"0","status":"affected","lessThan":"13.6.5","versionType":"custom"},{"version":"0","status":"affected","lessThan":"14.4","versionType":"custom"}]},{"vendor":"Apple","product":"visionOS","versions":[{"version":"0","status":"affected","lessThan":"1.1","versionType":"custom"}]}],"descriptions":[{"lang":"en","value":"The issue was addressed with improved memory handling. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, visionOS 1.1. Processing an image may result in disclosure of process memory."}],"references":[{"url":"https://support.apple.com/en-us/120880"},{"url":"https://support.apple.com/en-us/120883"},{"url":"https://support.apple.com/en-us/120884"},{"url":"https://support.apple.com/en-us/120886"},{"url":"https://support.apple.com/en-us/120895"}],"providerMetadata":{"orgId":"286789f9-fbc2-4510-9f9a-43facdede74c","shortName":"apple","dateUpdated":"2026-04-02T18:09:37.895Z"}},"adp":[{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-119","lang":"en","description":"CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":3.3,"attackVector":"LOCAL","baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","integrityImpact":"NONE","userInteraction":"REQUIRED","attackComplexity":"LOW","availabilityImpact":"NONE","privilegesRequired":"NONE","confidentialityImpact":"LOW"}},{"other":{"type":"ssvc","content":{"timestamp":"2024-03-08T15:33:52.302723Z","id":"CVE-2024-23257","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-03-27T21:15:19.444Z"}},{"title":"CVE Program Container","references":[{"url":"https://support.apple.com/en-us/HT214087","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214083","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214082","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214085","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT214084","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Mar/21","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Mar/22","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Mar/23","tags":["x_transferred"]},{"url":"http://seclists.org/fulldisclosure/2024/Mar/26","tags":["x_transferred"]},{"url":"https://support.apple.com/kb/HT214087"},{"url":"https://support.apple.com/kb/HT214085"},{"url":"https://support.apple.com/kb/HT214084"},{"url":"https://support.apple.com/kb/HT214083"},{"url":"https://support.apple.com/kb/HT214082"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-04T18:26:08.395Z"}}]}}