CVE-2024-27820

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-27820

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-27820.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-27820

Downstream

DEBIAN-CVE-2024-27820

DSA-5695-1

RHSA-2024:8180

RHSA-2024:8492

RHSA-2024:8496

RHSA-2024:9636

RHSA-2024:9646

RHSA-2024:9653

RHSA-2024:9679

RHSA-2024:9680

RHSA-2025:10364

RLSA-2024:8180

RLSA-2024:9636

SUSE-SU-2024:3751-1

SUSE-SU-2024:3752-1

SUSE-SU-2024:3869-1

SUSE-SU-2024:3870-1

UBUNTU-CVE-2024-27820

Related

Withdrawn

2026-01-27T04:19:37.449256Z

Published

2024-06-10T21:15:50Z

Modified

2026-01-27T04:19:37.449256Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

The issue was addressed with improved memory handling. This issue is fixed in tvOS 17.5, iOS 16.7.8 and iPadOS 16.7.8, visionOS 1.2, Safari 17.5, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. Processing web content may lead to arbitrary code execution.

References

Affected packages