Lucene search

AppleVULNRICHMENT:CVE-2024-40840

HistorySep 16, 2024 - 11:22 p.m.

CVE-2024-40840

2024-09-1623:22:46

apple

github.com

state management

ios 18

ipados 18

siri access

sensitive data

AI Score

5.5

Confidence

Low

EPSS

0.001

Percentile

21.4%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

This issue was addressed through improved state management. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to use Siri to access sensitive user data.

References

support.apple.com/en-us/121250