iOS Fixes Bluetooth Access Issues
CVE-2024-44191

5.5MEDIUM

Key Information:

Vendor: Apple
Status: Xcode; iOS And iPad OS; Mac OS; TV OS
Vendor: CVE Published:; 17 September 2024

What is CVE-2024-44191?

This issue was addressed through improved state management. This issue is fixed in Xcode 16, iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. An app may gain unauthorized access to Bluetooth.

Affected Version(s)

iOS and iPadOS 0 < 17.7

iOS and iPadOS 0 < 18

macOS 0 < 15

References

https://support.apple.com/en-us/121238

https://support.apple.com/en-us/121239

https://support.apple.com/en-us/121240

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2024

CVE-2024-44191 Data

JSON

Apple

What is CVE-2024-44191?

Affected Version(s)

References

CVSS V3.1

Timeline