Primary

Context

Apple CoreAudio Out-of-Bounds Read Vulnerability Allowing Denial-of-Service

Vulnerability

Patched

A vulnerability in the CoreAudio component of multiple Apple operating systems, including macOS Ventura, macOS Sonoma, visionOS, and tvOS, allows for an out-of-bounds read that can be exploited by playing a malicious audio file. This exploitation may lead to an unexpected termination of the application processing the audio.

Impact

Exploitation of this vulnerability causes a type confusion issue that can be addressed with improved checks, leading to an unexpected app termination.

Remediation

Users can update to the latest versions of the affected operating systems to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple CoreAudio Out-of-Bounds Read Vulnerability Allowing Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

Apple visionOS 2.4

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating