Apple Fixes Memory Handling Issue in iOS 17.5, iPadOS 17.5, tvOS 17.5, watchOS 10.5, macOS Sonoma 14.5
Key Information
- Vendor
- Apple
- Status
- iOS And iPad OS
- Mac OS
- Watch OS
- TV OS
- Vendor
- CVE Published:
- 14 May 2024
Badges
Summary
A kernel vulnerability has been discovered in AppleAVD, known as CVE-2024-27804, which affects older versions of Apple's operating systems, including iOS and iPadOS 17.4.1. This vulnerability has the potential to allow attackers to execute arbitrary code with kernel privileges. A security researcher is planning to release a proof-of-concept for this vulnerability, which could lead to the development of a kernel exploit. There is currently no SPTM bypass for arm64e devices running iOS & iPadOS 17, so a jailbreak using this exploit is not possible at this time. However, this development is seen as a step forward for potential future jailbreaks and hacking efforts.
Affected Version(s)
iOS and iPadOS < 17.5
macOS < 14.5
watchOS < 10.5
News Articles
iDownloadBlog CVE-2024-27804Apple walks back CVE-2024-27804, claims it's non-exploitable & offers security researcher paltry $1,000 bounty
Apple says CVE-2024-27804 isn't exploitable, so not only won't jailbreakers benefit from it, but the security researcher won't get a reward.
6 months ago
iDownloadBlog CVE-2024-27804PoC for CVE-2024-27804 published, jailbreak developers uncertain of viability
A proof of concept for CVE-2024-27804 was published, but some jailbreak developers are voicing that it won't result in a jailbreak.
6 months ago
iDownloadBlog CVE-2024-27804Security researcher says PoC for kernel vulnerability targeting iOS 17.4.1 and older coming soon
A security researcher is promising a write up about a kernel vulnerability proof-of-concept affecting iOS 17.4.1 and older.
6 months ago