CVE-2024-54488
published 2025-01-27CVE-2024-54488: A logic issue was addressed with improved file handling. This issue is fixed in iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sequoia 15.2, macOS Sonoma…
medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
A logic issue was addressed with improved file handling. This issue is fixed in iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2. Photos in the Hidden Photos Album may be viewed without authentication.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios18.2_and_ipados18.2 | — | — |
| apple | ios_and_ipados | < 18.2 | 18.2 |
| apple | ipados | < 17.7.3 | 17.7.3 |
| apple | ipados | >= 18.0 < 18.2 | 18.2 |
| apple | ipados17.7.3 | — | — |
| apple | iphone_os | < 18.2 | 18.2 |
| apple | macos | < 14.7.2 | 14.7.2 |
| apple | macos | < 15.2 | 15.2 |
| apple | macos | < 13.7.2 | 13.7.2 |
| apple | macos | >= 14.0 < 14.7.2 | 14.7.2 |
| apple | macos | >= 15.0 < 15.2 | 15.2 |
| apple | macos_sequoia | — | — |
| apple | macossonoma14.7.2 | — | — |
| apple | macosventura13.7.2 | — | — |
GHSA
GHSA-q7g4-2c4x-wxxq: A logic issue was addressed with improved file handling
ghsa_unreviewed·2025-01-28
CVE-2024-54488 [MEDIUM] CWE-863 GHSA-q7g4-2c4x-wxxq: A logic issue was addressed with improved file handling
A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13.7.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sonoma 14.7.2, macOS Sequoia 15.2. Photos in the Hidden Photos Album may be viewed without authentication.
Apple
CVE-2024-54488: iOS18.2 and iPadOS18.2
vendor_apple·2024-12-11·CVSS 5.3
CVE-2024-54488 [MEDIUM] CVE-2024-54488: iOS18.2 and iPadOS18.2
Apple Security Update: About the security content of iOS18.2 and iPadOS18.2
Product: iOS18.2 and iPadOS18.2
CVE: CVE-2024-54488
Component: Accounts
Impact: Photos in the Hidden Photos Album may be viewed without authentication
Description: A logic issue was addressed with improved file handling.
Apple
CVE-2024-54488: iPadOS17.7.3
vendor_apple·2024-12-11·CVSS 5.3
CVE-2024-54488 [MEDIUM] CVE-2024-54488: iPadOS17.7.3
Apple Security Update: About the security content of iPadOS17.7.3
Product: iPadOS17.7.3
CVE: CVE-2024-54488
Component: Accounts
Impact: Photos in the Hidden Photos Album may be viewed without authentication
Description: A logic issue was addressed with improved file handling.
Apple
CVE-2024-54488: macOSVentura13.7.2
vendor_apple·2024-12-11·CVSS 5.3
CVE-2024-54488 [MEDIUM] CVE-2024-54488: macOSVentura13.7.2
Apple Security Update: About the security content of macOSVentura13.7.2
Product: macOSVentura13.7.2
CVE: CVE-2024-54488
Component: Accounts
Impact: Photos in the Hidden Photos Album may be viewed without authentication
Description: A logic issue was addressed with improved file handling.
Apple
CVE-2024-54488: macOS Sequoia 15.2
vendor_apple·2024-12-11·CVSS 5.3
CVE-2024-54488 [MEDIUM] CVE-2024-54488: macOS Sequoia 15.2
Apple Security Update: About the security content of macOS Sequoia 15.2
Product: macOS Sequoia
Version: 15.2
CVE: CVE-2024-54488
Component: Accounts
Impact: Photos in the Hidden Photos Album may be viewed without authentication
Description: A logic issue was addressed with improved file handling.
Apple
CVE-2024-54488: macOSSonoma14.7.2
vendor_apple·2024-12-11·CVSS 5.3
CVE-2024-54488 [MEDIUM] CVE-2024-54488: macOSSonoma14.7.2
Apple Security Update: About the security content of macOSSonoma14.7.2
Product: macOSSonoma14.7.2
CVE: CVE-2024-54488
Component: Accounts
Impact: Photos in the Hidden Photos Album may be viewed without authentication
Description: A logic issue was addressed with improved file handling.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-01-27
Published