iOS and iPadOS Update Fixes Logic Issue, Addresses Saved Passwords Being Read Aloud by VoiceOver
CVE-2024-44204

5.5MEDIUM

Key Information:

Vendor: Apple
Status: iOS And iPad OS
Vendor: CVE Published:; 4 October 2024

Badges

👾 Exploit Exists📰 News Worthy

What is CVE-2024-44204?

A logic issue was addressed with improved validation. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. A user's saved passwords may be read aloud by VoiceOver.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

iOS and iPadOS < 18.0

News Articles

Nicolas Coolman

CVE-2024-44204 CVE-2024-44207

Apple, 2 Critical Security Flaws in iOS and iPadOS Products - ZAM

Apple Security Bulletin 121373, released on October 3, 2024, provides information on fixes for multiple critical vulnerabilities in versions prior to

CVE-2024-44204

iPhone 'VoiceOver' Feature Could Read Passwords Aloud

CVE-2024-44204 is one of two new Apple iOS security vulnerabilities that showcase an unexpected coming together of privacy snafus and accessibility features.

References

https://support.apple.com/en-us/121373

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Oct 5, 2024
📰
First article discovered
Oct 4, 2024
Vulnerability published
Oct 4, 2024

JSON

Apple