Filtered by vendor Apple Subscriptions
Filtered by product Iphone Os Subscriptions
Total 3767 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-44215 1 Apple 6 Ipados, Iphone Os, Macos and 3 more 2024-10-30 5.5 Medium
This issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, visionOS 2.1. Processing an image may result in disclosure of process memory.
CVE-2024-44269 1 Apple 5 Ipados, Iphone Os, Macos and 2 more 2024-10-30 5.5 Medium
A logic issue was addressed with improved checks. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, visionOS 2.1. A malicious app may use shortcuts to access restricted files.
CVE-2024-44273 1 Apple 6 Ipados, Iphone Os, Macos and 3 more 2024-10-30 5.5 Medium
This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, visionOS 2.1, macOS Sonoma 14.7.1, watchOS 11.1, tvOS 18.1. A malicious app may be able to access private information.
CVE-2024-44229 1 Apple 6 Ios, Ipados, Iphone Os and 3 more 2024-10-30 5.3 Medium
An information leakage was addressed with additional validation. This issue is fixed in visionOS 2.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, Safari 18.1. Private browsing may leak some browsing history.
CVE-2024-44252 1 Apple 4 Ipados, Iphone Os, Tvos and 1 more 2024-10-30 7.1 High
A logic issue was addressed with improved file handling. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, tvOS 18.1. Restoring a maliciously crafted backup file may lead to modification of protected system files.
CVE-2024-44285 1 Apple 5 Ipados, Iphone Os, Tvos and 2 more 2024-10-30 8.4 High
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 18.1 and iPadOS 18.1, watchOS 11.1, visionOS 2.1, tvOS 18.1. An app may be able to cause unexpected system termination or corrupt kernel memory.
CVE-2024-44282 1 Apple 6 Ipados, Iphone Os, Macos and 3 more 2024-10-30 6.5 Medium
An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, visionOS 2.1. Parsing a file may lead to disclosure of user information.
CVE-2024-40853 1 Apple 2 Ipados, Iphone Os 2024-10-30 5.9 Medium
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18 and iPadOS 18. An attacker may be able to use Siri to enable Auto-Answer Calls.
CVE-2024-44297 1 Apple 6 Ipad Os, Iphone Os, Macos and 3 more 2024-10-30 6.5 Medium
The issue was addressed with improved bounds checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, visionOS 2.1. Processing a maliciously crafted message may lead to a denial-of-service.
CVE-2024-40851 1 Apple 2 Ipados, Iphone Os 2024-10-30 2.4 Low
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.1 and iPadOS 18.1. An attacker with physical access may be able to access contact photos from the lock screen.
CVE-2024-44144 1 Apple 5 Ipados, Iphone Os, Macos and 2 more 2024-10-29 5.5 Medium
A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1, tvOS 18, watchOS 11, visionOS 2, iOS 18 and iPadOS 18. Processing a maliciously crafted file may lead to unexpected app termination.
CVE-2024-44217 1 Apple 2 Ipad Os, Iphone Os 2024-10-29 9.1 Critical
A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in iOS 18 and iPadOS 18. Password autofill may fill in passwords after failing authentication.
CVE-2024-44145 1 Apple 3 Ipad Os, Iphone Os, Mac Os 2024-10-29 5.7 Medium
This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15, iOS 18 and iPadOS 18. An attacker with physical access to a macOS device with Sidecar enabled may be able to bypass the Lock Screen.
CVE-2024-44207 1 Apple 2 Ipados, Iphone Os 2024-10-04 4.3 Medium
This issue was addressed with improved checks. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. Audio messages in Messages may be able to capture a few seconds of audio before the microphone indicator is activated.
CVE-2024-44204 1 Apple 2 Ipados, Iphone Os 2024-10-04 5.5 Medium
A logic issue was addressed with improved validation. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. A user's saved passwords may be read aloud by VoiceOver.
CVE-2024-44170 1 Apple 4 Ipados, Iphone Os, Macos and 1 more 2024-09-30 5.5 Medium
A privacy issue was addressed by moving sensitive data to a more secure location. This issue is fixed in iOS 18 and iPadOS 18, watchOS 11, macOS Sequoia 15. An app may be able to access user-sensitive data.
CVE-2024-43201 4 Apple, Google, Planet Fitness and 1 more 4 Iphone Os, Android, Planet Fitness Workouts and 1 more 2024-09-30 8.8 High
The Planet Fitness Workouts iOS and Android mobile apps prior to version 9.8.12 (released on 2024-07-25) fail to properly validate TLS certificates, allowing an attacker with appropriate network access to obtain session tokens and sensitive information.
CVE-2024-44164 1 Apple 3 Ipados, Iphone Os, Macos 2024-09-26 7.1 High
This issue was addressed with improved checks. This issue is fixed in iOS 17.7 and iPadOS 17.7, macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to bypass Privacy preferences.
CVE-2024-44165 1 Apple 4 Ipados, Iphone Os, Macos and 1 more 2024-09-26 7.5 High
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. Network traffic may leak outside a VPN tunnel.
CVE-2024-40840 1 Apple 2 Ipados, Iphone Os 2024-09-25 4.6 Medium
This issue was addressed through improved state management. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to use Siri to access sensitive user data.