CVE-2024-44259

high

Description

This issue was addressed through improved state management. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, Safari 18.1. An attacker may be able to misuse a trust relationship to download malicious content.

References

https://support.apple.com/en-us/121571

https://support.apple.com/en-us/121567

https://support.apple.com/en-us/121566

https://support.apple.com/en-us/121564

https://support.apple.com/en-us/121563

Details

Source: Mitre, NVD

Published: 2024-10-28

Updated: 2024-12-11

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High