QSearchQSearch

CVE-2024-54508

7.5 HIGH

The issue was addressed with improved memory handling

Published: 2024-12-12 · Last updated: 2026-05-28

Severity and scoring

CVSS
7.5 HIGH
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE
CWE-125, CWE-787

Affected products

VendorProduct
appleipados, iphone_os, macos

Description

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.6, macOS Sequoia 15.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. Processing maliciously crafted web content may lead to an unexpected process crash.

Source: NVD

References

Related CVEs

Same vendor

  • CVE-2025-46315 A permissions issue was addressed with additional restrictions (7.5 HIGH)
  • CVE-2025-46313 A logging issue was addressed with improved data redaction (5.5 MEDIUM)
  • CVE-2025-46308 An authorization issue was addressed with improved state management (5.3 MEDIUM)
  • CVE-2025-46293 This issue was addressed with improved handling of symlinks (5.5 MEDIUM)
  • CVE-2025-43339 An access issue was addressed with additional sandbox restrictions (5.5 MEDIUM)

Same CWE

  • CVE-2026-47750 stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inf... (7.8 HIGH)
  • CVE-2026-47747 stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inf... (7.8 HIGH)
  • CVE-2026-4367 A flaw was found in libXpm (5.5 MEDIUM)
  • CVE-2026-47963 DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive me... (5.5 MEDIUM)
  • CVE-2026-47934 DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive me... (5.5 MEDIUM)