iOS 17.7 and iPadOS 17.7 Fixes Private Browsing Tab Access Without Authentication
CVE-2024-44127

5.3MEDIUM

Key Information:

Vendor
Apple
Vendor
CVE Published:
17 September 2024

Summary

This issue was addressed through improved state management. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18. Private Browsing tabs may be accessed without authentication.

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

.