Apple Ios 17.6 And Ipados vulnerabilities

CVE-2024-44206 [CRITICAL] CVE-2024-44206: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-44206 Component: WebKit Impact: A user may be able to bypass some web content restrictions Description: An issue in the handling of URL protocols was addressed with improved logic.

CVE-2024-4558 [CRITICAL] CVE-2024-4558: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-4558 Component: CVE-2024-4558

CVE-2024-40787 [HIGH] CVE-2024-40787: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40787 Component: Shortcuts Impact: A shortcut may be able to bypass Internet permission requirements Description: This issue was addressed by adding an additional prompt for user consent.

CVE-2024-40812 [HIGH] CVE-2024-40812: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40812 Component: Shortcuts Impact: A shortcut may be able to bypass Internet permission requirements Description: A logic issue was addressed with improved checks.

CVE-2024-40805 [HIGH] CVE-2024-40805: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40805 Component: CVE-2024-40805

CVE-2024-54551 [HIGH] CVE-2024-54551: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-54551 Component: WebKit Impact: Processing web content may lead to a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2023-52356 [HIGH] CVE-2023-52356: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2023-52356 Component: CVE-2023-52356

CVE-2024-40815 [HIGH] CVE-2024-40815: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40815 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2024-40786 [HIGH] CVE-2024-40786: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40786 Component: Siri Impact: An attacker may be able to view sensitive user information Description: This issue was addressed through improved state management.

CVE-2024-40809 [HIGH] CVE-2024-40809: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40809 Component: Shortcuts Impact: A shortcut may be able to bypass Internet permission requirements Description: A logic issue was addressed with improved checks.

CVE-2024-40774 [HIGH] CVE-2024-40774: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40774 Component: AppleMobileFileIntegrity Impact: An app may be able to bypass Privacy preferences Description: A downgrade issue was addressed with additional code-signing restrictions.

CVE-2024-40799 [HIGH] CVE-2024-40799: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40799 Component: CoreGraphics Impact: Processing a maliciously crafted file may lead to unexpected app termination Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2024-40824 [MEDIUM] CVE-2024-40824: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40824 Component: Sandbox Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed through improved state management.

CVE-2024-40789 [MEDIUM] CVE-2024-40789: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40789 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2024-54564 [MEDIUM] CVE-2024-54564: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-54564 Component: AirDrop Impact: A file received from AirDrop may not have the quarantine flag applied Description: This issue was addressed through improved state management.

CVE-2024-40788 [MEDIUM] CVE-2024-40788: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40788 Component: Kernel Impact: A local attacker may be able to cause unexpected system shutdown Description: A type confusion issue was addressed with improved memory handling.

CVE-2023-6277 [MEDIUM] CVE-2023-6277: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2023-6277 Component: CVE-2023-6277

CVE-2024-40782 [MEDIUM] CVE-2024-40782: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40782 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A use-after-free issue was addressed with improved memory management.

CVE-2024-40829 [MEDIUM] CVE-2024-40829: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40829 Component: VoiceOver Impact: An attacker may be able to view restricted content from the lock screen Description: The issue was addressed with improved checks.

CVE-2024-40806 [MEDIUM] CVE-2024-40806: iOS 17.6 and iPadOS 17.6 Apple Security Update: About the security content of iOS 17.6 and iPadOS 17.6 Product: iOS 17.6 and iPadOS Version: 17.6 CVE: CVE-2024-40806 Component: ImageIO Impact: Processing a maliciously crafted file may lead to unexpected app termination Description: An out-of-bounds read issue was addressed with improved input validation.