CVE-2024-44241

9.8CRITICAL

Key Information

Vendor: Apple
Status: iOS And iPad OS
Vendor: CVE Published:; 12 December 2024

Summary

The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.1 and iPadOS 18.1. An attacker may be able to cause unexpected system termination or arbitrary code execution in DCP firmware.

Affected Version(s)

iOS and iPadOS < 18.1

References

https://support.apple.com/en-us/121563

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 12, 2024

Collectors

NVD DatabaseMitre Database