Lucene search
K

107 matches found

CVE
CVE
added 2024/06/10 8:56 p.m.72 views

CVE-2024-27845

CVE-2024-27845 describes a privacy issue in Apple iOS/iPadOS where an app may access Notes attachments due to how temporary files were handled. The connected documentation confirms the root cause as improved handling of temporary files, with a fix implemented in iOS 17.5 and iPadOS 17.5. Impact i...

3.3CVSS5.7AI score0.002EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2024/06/10 8:56 p.m.70 views

CVE-2024-23282

CVE-2024-23282 is an Apple iOS/macOS/iPadOS FaceTime-related vulnerability: a maliciously crafted email may initiate FaceTime calls without user authorization. Connected sources confirm remediation: Apple patches in macOS Sonoma 14.5, watchOS 10.5, iOS 17.5 and iPadOS 17.5, and older iOS/iPadOS v...

5.5CVSS7.1AI score0.00239EPSS
Exploits0References12Affected Software4
Cvelist
Cvelist
added 2024/06/10 8:56 p.m.39 views

CVE-2024-23282

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, watchOS 10.5. A maliciously crafted email may be able to initiate FaceTime calls without user authorization...

0.00239EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/06/10 8:56 p.m.15 views

CVE-2024-23282

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, watchOS 10.5. A maliciously crafted email may be able to initiate FaceTime calls without user authorization...

7.1AI score0.00239EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/10 8:56 p.m.41 views

CVE-2024-27848

This issue was addressed with improved permissions checking. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. A malicious app may be able to gain root privileges...

0.00204EPSS
Exploits0References2
CVE
CVE
added 2024/06/10 8:56 p.m.83 views

CVE-2024-27848

CVE-2024-27848 affects Apple platforms (macOS, iOS, iPadOS). The issue corresponds to an elevation of privileges via improved permissions checking, enabling a malicious local app to gain root privileges. The vulnerability is fixed in macOS Sonoma 14.5 and iOS/iPadOS 17.5. Related Apple security c...

7.8CVSS7.1AI score0.00204EPSS
Exploits0References6Affected Software3
Vulnrichment
Vulnrichment
added 2024/06/10 8:56 p.m.24 views

CVE-2024-27848

This issue was addressed with improved permissions checking. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. A malicious app may be able to gain root privileges...

7.1AI score0.00204EPSS
Exploits0References2
Malwarebytes
Malwarebytes
added 2024/05/16 1:6 p.m.15 views

[updated] Deleted iPhone photos show up again after iOS update

iPhone owners are reporting that photos theyd deleted are now back on their phones, after updating to iOS 17.5. With so many users reporting similar oddities, it would seem something went wrong, or at least different than to be expected. Here are some examples from Reddit: “When in conversation...

7AI score
Exploits0
NCSC
NCSC
added 2024/05/15 12:47 p.m.8 views

Vulnerabilities fixed in Apple iOS and iPadOS

Apple has fixed vulnerabilities in iOS and iPadOS. A malicious party can exploit the vulnerabilities to carry out attacks that can lead to the following categories of damage: - Denial-of-Service DoS - Remote code execution Administrator/Root rights - Remote code execution User rights - Access to...

9.8CVSS7.2AI score0.01325EPSS
Exploits1References1
NVD
NVD
added 2024/05/14 3:13 p.m.17 views

CVE-2024-27847

This issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. An app may be able to bypass Privacy preferences...

7.4CVSS4.3AI score0.00224EPSS
Exploits0References14
NVD
NVD
added 2024/05/14 3:13 p.m.31 views

CVE-2024-27852

A privacy issue was addressed with improved client ID handling for alternative app marketplaces. This issue is fixed in iOS 17.5 and iPadOS 17.5. A maliciously crafted webpage may be able to distribute a script that tracks users on other webpages...

6.5CVSS5.3AI score0.00389EPSS
Exploits0References4
NVD
NVD
added 2024/05/14 3:13 p.m.15 views

CVE-2024-27841

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An app may be able to disclose kernel memory...

9.8CVSS4.2AI score0.00444EPSS
Exploits0References8
NVD
NVD
added 2024/05/14 3:13 p.m.15 views

CVE-2024-27835

This issue was addressed through improved state management. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access to an iOS device may be able to access notes from the lock screen...

2.4CVSS5.1AI score0.00256EPSS
Exploits0References4
OSV
OSV
added 2024/05/14 3:13 p.m.28 views

CVE-2024-27834

The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication...

5.5CVSS5.2AI score
Exploits0References17
NVD
NVD
added 2024/05/14 3:13 p.m.25 views

CVE-2024-27818

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An attacker may be able to cause unexpected app termination or arbitrary code execution...

7.8CVSS5.4AI score0.00727EPSS
Exploits0References10
NVD
NVD
added 2024/05/14 3:13 p.m.31 views

CVE-2024-27804

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.3, watchOS 10.5. An app may be able to cause unexpected system termination...

8.1CVSS5.3AI score0.01325EPSS
Exploits0References19
Vulnrichment
Vulnrichment
added 2024/05/13 11:0 p.m.32 views

CVE-2024-27810

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7, tvOS 17.5, watchOS 10.5. An app may be able to read sensitive location information...

7.1AI score0.00714EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/05/13 11:0 p.m.22 views

CVE-2024-27847

This issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. An app may be able to bypass Privacy preferences...

7.1AI score0.00224EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/13 11:0 p.m.22 views

CVE-2024-27816

A logic issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, watchOS 10.5. An attacker may be able to access user data...

4.5AI score0.00985EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/13 11:0 p.m.16 views

CVE-2024-27796

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. An attacker may be able to elevate privileges...

4.6AI score0.00259EPSS
Exploits0References5
Rows per page
Query Builder