CVE-2024-40815

Published: Jul 29, 2024Modified: Apr 2, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.6 / Impact: 5.9

Source: NVD

Description

A race condition was addressed with additional validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, watchOS 10.6. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.

Affected (6)

Products: Apple: Ipados, Iphone Os, Macos, Tvos, Watchos

5 products

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Apple Ipados	Before 17.6
Apple Iphone Os	Before 17.6
Apple Macos	Before 13.6.8
Apple Macos	From 14.0 to 14.6
Apple Tvos	Before 17.6
Apple Watchos	Before 10.6

Related CWEs

Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References (20)

https://support.apple.com/en-us/120909

Source: product-security@apple.com

https://support.apple.com/en-us/120911

Source: product-security@apple.com

https://support.apple.com/en-us/120912

Source: product-security@apple.com

https://support.apple.com/en-us/120914

Source: product-security@apple.com

https://support.apple.com/en-us/120916

Source: product-security@apple.com

http://seclists.org/fulldisclosure/2024/Jul/16

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2024/Jul/18

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2024/Jul/19

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2024/Jul/21

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2024/Jul/22

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://support.apple.com/en-us/HT214117

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT214119

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT214120

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT214122

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT214124

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/kb/HT214117

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT214119

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT214120

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT214122

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT214124

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.