CVE-2024-44165
published 2024-09-17CVE-2024-44165: A logic issue was addressed with improved checks. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7, visionOS 2. Network traffic may leak outside a VPN tunnel.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_17.7_and_ipados | — | — |
| apple | ios_18_and_ipados | — | — |
| apple | ios_and_ipados | < 17.7 | 17.7 |
| apple | ios_and_ipados | < 18 | 18 |
| apple | ipados | < 17.7 | 17.7 |
| apple | iphone_os | < 17.7 | 17.7 |
| apple | macos | < 14.7 | 14.7 |
| apple | macos | < 15 | 15 |
| apple | macos | < 13.7 | 13.7 |
| apple | macos | >= 14.0 < 14.7 | 14.7 |
| apple | macos_sequoia | — | — |
| apple | macos_sonoma | — | — |
| apple | macos_ventura | — | — |
| apple | visionos | < 2 | 2 |
| apple | visionos | < 2.0 | 2.0 |
| apple | visionos2 | — | — |
GHSA
GHSA-3m65-xvh4-3hm8: A logic issue was addressed with improved checks
ghsa_unreviewed·2024-09-17
CVE-2024-44165 [HIGH] GHSA-3m65-xvh4-3hm8: A logic issue was addressed with improved checks
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. Network traffic may leak outside a VPN tunnel.
Apple
CVE-2024-44165: macOS Ventura 13.7
vendor_apple·2024-09-16·CVSS 7.5
CVE-2024-44165 [HIGH] CVE-2024-44165: macOS Ventura 13.7
Apple Security Update: About the security content of macOS Ventura 13.7
Product: macOS Ventura
Version: 13.7
CVE: CVE-2024-44165
Component: Kernel
Impact: Network traffic may leak outside a VPN tunnel
Description: A logic issue was addressed with improved checks.
Apple
CVE-2024-44165: iOS 17.7 and iPadOS 17.7
vendor_apple·2024-09-16·CVSS 7.5
CVE-2024-44165 [HIGH] CVE-2024-44165: iOS 17.7 and iPadOS 17.7
Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7
Product: iOS 17.7 and iPadOS
Version: 17.7
CVE: CVE-2024-44165
Component: Kernel
Impact: Network traffic may leak outside a VPN tunnel
Description: A logic issue was addressed with improved checks.
Apple
CVE-2024-44165: iOS 18 and iPadOS 18
vendor_apple·2024-09-16·CVSS 7.5
CVE-2024-44165 [HIGH] CVE-2024-44165: iOS 18 and iPadOS 18
Apple Security Update: About the security content of iOS 18 and iPadOS 18
Product: iOS 18 and iPadOS
Version: 18
CVE: CVE-2024-44165
Component: Kernel
Impact: Network traffic may leak outside a VPN tunnel
Description: A logic issue was addressed with improved checks.
Apple
CVE-2024-44165: macOS Sequoia 15
vendor_apple·2024-09-16·CVSS 7.5
CVE-2024-44165 [HIGH] CVE-2024-44165: macOS Sequoia 15
Apple Security Update: About the security content of macOS Sequoia 15
Product: macOS Sequoia
Version: 15
CVE: CVE-2024-44165
Component: Kernel
Impact: Network traffic may leak outside a VPN tunnel
Description: A logic issue was addressed with improved checks.
Apple
CVE-2024-44165: visionOS2
vendor_apple·2024-09-16·CVSS 7.5
CVE-2024-44165 [HIGH] CVE-2024-44165: visionOS2
Apple Security Update: About the security content of visionOS2
Product: visionOS2
CVE: CVE-2024-44165
Component: Kernel
Impact: Network traffic may leak outside a VPN tunnel
Description: A logic issue was addressed with improved checks.
Apple
CVE-2024-44165: macOS Sonoma 14.7
vendor_apple·2024-09-16·CVSS 7.5
CVE-2024-44165 [HIGH] CVE-2024-44165: macOS Sonoma 14.7
Apple Security Update: About the security content of macOS Sonoma 14.7
Product: macOS Sonoma
Version: 14.7
CVE: CVE-2024-44165
Component: Kernel
Impact: Network traffic may leak outside a VPN tunnel
Description: A logic issue was addressed with improved checks.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://support.apple.com/en-us/121234https://support.apple.com/en-us/121238https://support.apple.com/en-us/121246https://support.apple.com/en-us/121247https://support.apple.com/en-us/121249https://support.apple.com/en-us/121250http://seclists.org/fulldisclosure/2024/Sep/32http://seclists.org/fulldisclosure/2024/Sep/33http://seclists.org/fulldisclosure/2024/Sep/36http://seclists.org/fulldisclosure/2024/Sep/39http://seclists.org/fulldisclosure/2024/Sep/40http://seclists.org/fulldisclosure/2024/Sep/41
2024-09-17
Published