CVE-2024-23300

Severity CVSS v4.0:
Pending analysis
Type:
CWE-416 Use After Free
Publication date:
12/03/2024
Last modified:
09/12/2024

Description

A use-after-free issue was addressed with improved memory management. This issue is fixed in GarageBand 10.4.11. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:apple:garageband:*:*:*:*:*:*:*:* 10.4.11 (excluding)