High severity8.8NVD Advisory· Published Jun 10, 2024· Updated Apr 2, 2026

CVE-2024-27833

Description

An integer overflow was addressed with improved input validation. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, tvOS 17.5, visionOS 1.2. Processing maliciously crafted web content may lead to arbitrary code execution.

Affected products

Apple Inc./Safari
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
Range: <17.5
Apple Inc./Ipados
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Range: <16.7.8
Apple Inc./Iphone Os
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Range: <16.7.8
Apple Inc./tvOS
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
Range: <17.5
Apple Inc./Visionos
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
Range: <1.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2024/Jun/5nvdMailing ListThird Party Advisory
support.apple.com/en-us/HT214100nvdVendor Advisory
support.apple.com/en-us/HT214101nvdVendor Advisory
support.apple.com/en-us/HT214102nvdVendor Advisory
support.apple.com/en-us/HT214103nvdVendor Advisory
support.apple.com/en-us/HT214108nvdVendor Advisory
support.apple.com/en-us/120896nvd
support.apple.com/en-us/120898nvd
support.apple.com/en-us/120901nvd
support.apple.com/en-us/120905nvd
support.apple.com/en-us/120906nvd
support.apple.com/kb/HT214100nvd
support.apple.com/kb/HT214102nvd
support.apple.com/kb/HT214103nvd
support.apple.com/kb/HT214108nvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000