Information Disclosure Vulnerability in Apple iOS and iPadOS
CVE-2024-44276

7.3HIGH

Key Information:

Vendor: Apple
Status: iOS And iPad OS
Vendor: CVE Published:; 17 March 2025

Summary

An information disclosure vulnerability has been identified in Apple's iOS and iPadOS, potentially allowing an attacker in a privileged network position to leak sensitive information. This issue arises from the lack of secure transmission protocols in earlier versions, specifically before the updates in iOS 18.2 and iPadOS 18.2. It is crucial for users to upgrade to the latest versions to safeguard against potential data leaks and to ensure the security of their devices while transmitting sensitive data over networks.

Affected Version(s)

iOS and iPadOS < 18.2

References

https://support.apple.com/en-us/121837

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 17, 2025