This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, visionOS 2.1, macOS Sonoma 14.7.1, watchOS 11.1, tvOS 18.1. A malicious app may be able to access private information.
Metrics
Affected Vendors & Products
References
History
Wed, 30 Oct 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 30 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apple
Apple ipados Apple iphone Os Apple macos Apple tvos Apple visionos Apple watchos |
|
Weaknesses | CWE-59 | |
CPEs | cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Apple
Apple ipados Apple iphone Os Apple macos Apple tvos Apple visionos Apple watchos |
|
Metrics |
cvssV3_1
|
Mon, 28 Oct 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, visionOS 2.1, macOS Sonoma 14.7.1, watchOS 11.1, tvOS 18.1. A malicious app may be able to access private information. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2024-10-28T21:08:05.561Z
Updated: 2024-10-30T19:47:26.348Z
Reserved: 2024-08-20T21:45:40.789Z
Link: CVE-2024-44273
Vulnrichment
Updated: 2024-10-30T19:47:21.775Z
NVD
Status : Analyzed
Published: 2024-10-28T21:15:07.737
Modified: 2024-10-30T18:45:10.080
Link: CVE-2024-44273
Redhat
No data.