|
301
|
6.1
-
|
MEDIUM
Network
|
This issue was addressed through improved state management. This issue is fixed in Safari 18, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. Processing maliciously crafted w…
|
CWE-79
Cross-site Scripting
|
CVE-2024-40857
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.0
|
2024-09-25 22:41
2024-09-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302
|
7.5
-
|
HIGH
Network
|
An integrity issue was addressed with Beacon Protection. This issue is fixed in iOS 18 and iPadOS 18, tvOS 18, macOS Sequoia 15. An attacker may be able to force a device to disconnect from a secure …
|
NVD-CWE-noinfo
|
CVE-2024-40856
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.0
|
2024-09-25 22:43
2024-09-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303
|
4.6
-
|
MEDIUM
Physics
|
This issue was addressed through improved state management. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to use Siri to access sensitive user data.
|
NVD-CWE-noinfo
|
CVE-2024-40840
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.0
|
2024-09-26 04:42
2024-09-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304
|
7.5
-
|
HIGH
Network
|
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. Network t…
|
NVD-CWE-noinfo
|
CVE-2024-44165
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.7
|
2024-09-26 22:53
2024-09-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305
|
7.1
-
|
HIGH
Local
|
This issue was addressed with improved checks. This issue is fixed in iOS 17.7 and iPadOS 17.7, macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to bypass Privacy preferenc…
|
NVD-CWE-noinfo
|
CVE-2024-44164
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.7
|
2024-09-26 22:54
2024-09-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306
|
5.5
-
|
MEDIUM
Local
|
A privacy issue was addressed by moving sensitive data to a more secure location. This issue is fixed in iOS 18 and iPadOS 18, watchOS 11, macOS Sequoia 15. An app may be able to access user-sensitiv…
|
NVD-CWE-noinfo
|
CVE-2024-44170
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.0
|
2024-10-1 04:48
2024-09-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307
|
5.5
-
|
MEDIUM
Local
|
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to use se…
|
NVD-CWE-noinfo
|
CVE-2024-40833
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
16.7.9
|
2024-11-21 18:31
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308
|
5.5
-
|
MEDIUM
Local
|
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, m…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-40780
|
cpe:2.3:o:apple:iphone_os:*:*
|
17.0
|
|
|
17.6 16.7.9
|
2024-11-21 18:31
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309
|
5.9
-
|
MEDIUM
Network
|
A race condition was addressed with improved locking. This issue is fixed in macOS Sonoma 14.5, iOS 16.7.8 and iPadOS 16.7.8, macOS Ventura 13.6.7, watchOS 10.5, visionOS 1.3, tvOS 17.5, iOS 17.5 and…
|
CWE-362
Race Condition
|
CVE-2024-27823
|
cpe:2.3:o:apple:iphone_os:*:*
|
17.0
|
|
|
17.5 16.7.8
|
2024-11-21 18:05
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310
|
5.5
-
|
MEDIUM
Local
|
A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, macOS Sonom…
|
NVD-CWE-noinfo
|
CVE-2024-40835
|
cpe:2.3:o:apple:iphone_os:*:*
|
17.0
|
|
|
17.6 16.7.9
|
2024-11-21 18:31
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|