{"id":"CVE-2024-40789","details":"An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.","modified":"2026-03-15T22:49:34.969249Z","published":"2024-07-29T23:15:12.270Z","related":["ALSA-2024:8180","ALSA-2024:9636","MGASA-2025-0291","SUSE-SU-2024:3005-1","SUSE-SU-2024:3052-1","SUSE-SU-2024:3091-1","SUSE-SU-2024:3109-1"],"references":[{"type":"WEB","url":"https://support.apple.com/kb/HT214116"},{"type":"WEB","url":"https://support.apple.com/kb/HT214124"},{"type":"WEB","url":"https://support.apple.com/kb/HT214122"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/09/msg00006.html"},{"type":"WEB","url":"https://support.apple.com/kb/HT214117"},{"type":"WEB","url":"https://support.apple.com/kb/HT214119"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/HT214117"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/HT214119"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2024/Jul/15"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2024/Jul/17"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2024/Jul/18"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2024/Jul/21"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/HT214116"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/HT214121"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/HT214122"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/HT214123"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2024/Jul/16"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/HT214124"},{"type":"ADVISORY","url":"https://support.apple.com/kb/HT214121"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2024/Jul/22"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2024/Jul/23"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-40789.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"17.6"}]},{"events":[{"introduced":"0"},{"fixed":"16.7.9"}]},{"events":[{"introduced":"17.0"},{"fixed":"17.6"}]},{"events":[{"introduced":"0"},{"fixed":"16.7.9"}]},{"events":[{"introduced":"17.0"},{"fixed":"17.6"}]},{"events":[{"introduced":"0"},{"fixed":"14.6"}]},{"events":[{"introduced":"0"},{"fixed":"17.6"}]},{"events":[{"introduced":"0"},{"fixed":"1.3"}]},{"events":[{"introduced":"0"},{"fixed":"10.6"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}