High severity8.8NVD Advisory· Published Jun 10, 2024· Updated Apr 2, 2026

CVE-2024-27820

Description

The issue was addressed with improved memory handling. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing web content may lead to arbitrary code execution.

Affected products

Apple Inc./Safari
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
Range: <17.5
Apple Inc./Ipados
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Range: <16.7.8
Apple Inc./Iphone Os
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Range: <16.7.8
Apple Inc./macOS
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Range: >=14.0,<14.5
Apple Inc./tvOS
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
Range: <17.5
Apple Inc./Visionos
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
Range: <1.2
Apple Inc./watchOS
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
Range: <10.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2024/Jun/5nvdMailing ListThird Party Advisory
support.apple.com/en-us/HT214100nvdVendor Advisory
support.apple.com/en-us/HT214101nvdVendor Advisory
support.apple.com/en-us/HT214102nvdVendor Advisory
support.apple.com/en-us/HT214103nvdVendor Advisory
support.apple.com/en-us/HT214104nvdVendor Advisory
support.apple.com/en-us/HT214106nvdVendor Advisory
support.apple.com/en-us/HT214108nvdVendor Advisory
support.apple.com/en-us/120896nvd
support.apple.com/en-us/120898nvd
support.apple.com/en-us/120901nvd
support.apple.com/en-us/120902nvd
support.apple.com/en-us/120903nvd
support.apple.com/en-us/120905nvd
support.apple.com/en-us/120906nvd
support.apple.com/kb/HT214100nvd
support.apple.com/kb/HT214102nvd
support.apple.com/kb/HT214104nvd
support.apple.com/kb/HT214106nvd
support.apple.com/kb/HT214108nvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000