Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-44157

A stack buffer overflow was addressed through improved input validation. This issue is fixed in Apple TV 1.5.0.152 for Windows, iTunes 12.13.3 for Windows. Parsing a maliciously crafted video file may lead to unexpected system termination.

Published

2024-10-11T18:15:08.030

Last Modified

2024-12-12T19:09:01.313

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Primary
CWE-787
Type: Secondary
CWE-120

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	apple	apple_tv	< 1.5.0.152	Yes
Application	apple	itunes	< 12.13.3	Yes

References

https://support.apple.com/en-us/121328 Vendor Advisory ([email protected])
https://support.apple.com/en-us/121441 Vendor Advisory ([email protected])