iOS Fixes Bluetooth Access Issues
CVE-2024-44191

5.5MEDIUM

Key Information:

Vendor: Apple
Status: Xcode; Mac OS; TV OS; Visionos
Vendor: CVE Published:; 17 September 2024

What is CVE-2024-44191?

This issue was addressed through improved state management. This issue is fixed in iOS 17.7 and iPadOS 17.7, Xcode 16, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. An app may gain unauthorized access to Bluetooth.

Affected Version(s)

iOS and iPadOS < 17.7

iOS and iPadOS < 18

macOS < 15

References

https://support.apple.com/en-us/121239

https://support.apple.com/en-us/121238

https://support.apple.com/en-us/121248

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2024

Apple

What is CVE-2024-44191?

Affected Version(s)

References

CVSS V3.1

Timeline