Description

The issue was addressed with improved checks. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, watchOS 10.5. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.

INFO

Published Date :

2024-05-13T23:00:50.836Z

Last Modified :

2026-04-02T18:15:05.001Z

Source :

apple
AFFECTED PRODUCTS

The following products are affected by CVE-2024-27834 vulnerability.

Vendors Products
Apple
  • Ipad Os
  • Ipados
  • Iphone Os
  • Macos
  • Safari
  • Tvos
  • Watchos
Fedoraproject
  • Fedora
Redhat
  • Enterprise Linux
  • Rhel Els
Webkitgtk
  • Webkitgtk
Wpewebkit
  • Wpe Webkit
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-27834.

URL Resource
http://seclists.org/fulldisclosure/2024/May/10 cve-icon
http://seclists.org/fulldisclosure/2024/May/12 cve-icon
http://seclists.org/fulldisclosure/2024/May/16 cve-icon
http://seclists.org/fulldisclosure/2024/May/17 cve-icon
http://seclists.org/fulldisclosure/2024/May/9 cve-icon
http://www.openwall.com/lists/oss-security/2024/05/21/1 cve-icon
https://lists.fedoraproject.org/archives/list/[email protected]/message/ADCLQW54XN37VJZNYD3UKCYATJFIMYXG/ cve-icon
https://lists.fedoraproject.org/archives/list/[email protected]/message/WKIXADCW3O4R2OOSDZGPU55XQFE6NA3M/ cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-27834 cve-icon
https://support.apple.com/en-us/120896 cve-icon cve-icon
https://support.apple.com/en-us/120898 cve-icon cve-icon
https://support.apple.com/en-us/120901 cve-icon cve-icon
https://support.apple.com/en-us/120902 cve-icon cve-icon
https://support.apple.com/en-us/120903 cve-icon cve-icon
https://support.apple.com/en-us/120905 cve-icon cve-icon
https://support.apple.com/en-us/HT214101 cve-icon
https://support.apple.com/en-us/HT214102 cve-icon
https://support.apple.com/en-us/HT214103 cve-icon
https://support.apple.com/en-us/HT214104 cve-icon
https://support.apple.com/en-us/HT214106 cve-icon
https://support.apple.com/kb/HT214100 cve-icon
https://support.apple.com/kb/HT214102 cve-icon
https://support.apple.com/kb/HT214104 cve-icon
https://support.apple.com/kb/HT214106 cve-icon
https://webkitgtk.org/security/WSA-2024-0003.html cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-27834 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact