Apple macOS Sequoia
Moderate fix4 remedies
cpe:2.3:o:apple:mac_os:*:*:*:*:*:*:*, +1 more
Moderate fix4 remedies
Apple Products AirPlay Component Use-After-Free Vulnerability Allowing Memory Corruption
Vulnerability
Patched
A use-after-free vulnerability has been identified in the AirPlay component of several Apple products, including macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4, iPadOS 18.4, and visionOS 2.4. This vulnerability allows an attacker on the local network to corrupt process memory, potentially leading to arbitrary code execution.
Impact
Exploitation of this vulnerability can cause process memory corruption, which may be leveraged for arbitrary code execution.
Reproduction
The vulnerability can be reproduced by sending a crafted AirPlay request over the local network to a vulnerable device. This can be done by an unauthenticated user on the same network as the target device.
Remediation
Users can update to the latest versions of macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4, iPadOS 18.4, and visionOS 2.4 to address this vulnerability.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
0.6exploitability
5.0remediation
7.7relevance
0.0threat
1.6urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.