Memory Handling Vulnerability in Apple Products
CVE-2024-44245

7.1HIGH

Key Information:

Vendor: Apple
Status: Visionos; Mac OS; iPad OS; iPhone OS
Vendor: CVE Published:; 12 December 2024

What is CVE-2024-44245?

A vulnerability related to memory handling has been identified in several Apple products. This issue poses a risk as an app may exploit it to cause unexpected terminations of the system or potentially corrupt kernel memory. Apple has addressed this vulnerability in various updates across its platforms, including iPadOS 17.7.3, visionOS 2.2, macOS Sequoia 15.2, and more. Users and administrators are encouraged to update their devices to ensure protection against this vulnerability.

References

https://support.apple.com/en-us/121837

https://support.apple.com/en-us/121838

https://support.apple.com/en-us/121839

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 12, 2024