Vulnerability Details CVE-2024-44157
A stack buffer overflow was addressed through improved input validation. This issue is fixed in Apple TV 1.5.0.152 for Windows, iTunes 12.13.3 for Windows. Parsing a maliciously crafted video file may lead to unexpected system termination.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.4%
CVSS Severity
CVSS v3 Score 5.5
Products affected by CVE-2024-44157
-
cpe:2.3:a:apple:apple_tv:*
-
cpe:2.3:a:apple:itunes:-
-
cpe:2.3:a:apple:itunes:12.0.0
-
cpe:2.3:a:apple:itunes:12.0.4
-
cpe:2.3:a:apple:itunes:12.1.3
-
cpe:2.3:a:apple:itunes:12.10.1
-
cpe:2.3:a:apple:itunes:12.10.2
-
cpe:2.3:a:apple:itunes:12.10.3
-
cpe:2.3:a:apple:itunes:12.10.4
-
cpe:2.3:a:apple:itunes:12.10.5
-
cpe:2.3:a:apple:itunes:12.10.7
-
cpe:2.3:a:apple:itunes:12.10.8
-
cpe:2.3:a:apple:itunes:12.10.9
-
cpe:2.3:a:apple:itunes:12.11
-
cpe:2.3:a:apple:itunes:12.11.3
-
cpe:2.3:a:apple:itunes:12.12.3
-
cpe:2.3:a:apple:itunes:12.12.4
-
cpe:2.3:a:apple:itunes:12.12.9
-
cpe:2.3:a:apple:itunes:12.13.1
-
cpe:2.3:a:apple:itunes:12.13.2
-
cpe:2.3:a:apple:itunes:12.4.1
-
cpe:2.3:a:apple:itunes:12.4.3
-
cpe:2.3:a:apple:itunes:12.5.5
-
cpe:2.3:a:apple:itunes:12.5.5.5
-
cpe:2.3:a:apple:itunes:12.8
-
cpe:2.3:a:apple:itunes:12.9
-
cpe:2.3:a:apple:itunes:12.9.0
-
cpe:2.3:a:apple:itunes:12.9.1
-
cpe:2.3:a:apple:itunes:12.9.2
-
cpe:2.3:a:apple:itunes:12.9.3
-
cpe:2.3:a:apple:itunes:12.9.4
-
cpe:2.3:a:apple:itunes:12.9.5
-
cpe:2.3:a:apple:itunes:12.9.6