CVE-2024-40853Apple IOS AND Ipados vulnerability

4 documents4 sources
Severity
3.3LOWNVD
EPSS
0.2%
top 61.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apple IOS AND IpadosApple IpadosApple Iphone OS
Timeline
PublishedOct 28

Description

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18 and iPadOS 18. An attacker may be able to use Siri to enable Auto-Answer Calls.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages3 packages

NVDapple/ipados< 18.0
CVEListV5apple/ios_and_ipados< 18
NVDapple/iphone_os< 18.0

🔴Vulnerability Details

2
CVEList
CVE-2024-40853: This issue was addressed by restricting options offered on a locked device2024-10-28
GHSA
GHSA-3cp8-2w4x-m8xp: This issue was addressed by restricting options offered on a locked device2024-10-28

📋Vendor Advisories

1
Apple
CVE-2024-40853: iOS 18 and iPadOS 182024-09-16
CVE-2024-40853 — Apple IOS AND Ipados vulnerability | cvebase