Logic Issue in Apple iOS and iPadOS Affecting User Data Access
CVE-2024-44263

5.5MEDIUM

Key Information:

Vendor
Apple
Vendor
CVE Published:
28 October 2024

Summary

A logic issue has been identified in Apple's iOS and iPadOS platforms that may permit an app to access sensitive user data without appropriate authorization. This vulnerability, associated with improper state management, can potentially expose personal information if exploited. It is imperative for users to update their devices to iOS 18.1 or iPadOS 18.1 to mitigate the risk of unauthorized data access. Apple has addressed this issue in the latest updates to enhance user security and safeguard sensitive information.

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

.
πŸͺ This website uses cookies, like every other website on the internet πŸ˜• By using our website, you consent to the use of cookies.