Apple Ios 17.7 And Ipados vulnerabilities

18 known vulnerabilities affecting apple/ios_17.7_and_ipados.

Total CVEs
18
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM12LOW2

Vulnerabilities

Page 1 of 1
CVE-2024-44126HIGHCVSS 7.8v17.72024-09-16
CVE-2024-44126 [HIGH] CVE-2024-44126: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44126 Component: ARKit Impact: Processing a maliciously crafted file may lead to heap corruption Description: The issue was addressed with improved checks.
apple
CVE-2024-44165HIGHCVSS 7.5v17.72024-09-16
CVE-2024-44165 [HIGH] CVE-2024-44165: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44165 Component: Kernel Impact: Network traffic may leak outside a VPN tunnel Description: A logic issue was addressed with improved checks.
apple
CVE-2024-44164HIGHCVSS 7.1v17.72024-09-16
CVE-2024-44164 [HIGH] CVE-2024-44164: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44164 Component: Sync Services Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved checks.
apple
CVE-2024-27879HIGHCVSS 7.5v17.72024-09-16
CVE-2024-27879 [HIGH] CVE-2024-27879: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-27879 Component: UIKit Impact: An attacker may be able to cause unexpected app termination Description: The issue was addressed with improved bounds checks.
apple
CVE-2024-44183MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-44183 [MEDIUM] CVE-2024-44183: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44183 Component: Mail Accounts Impact: An app may be able to access information about a user's contacts Description: A privacy issue was addressed with improved private data redaction for log entries.
apple
CVE-2024-27880MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-27880 [MEDIUM] CVE-2024-27880: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-27880 Component: ImageIO Impact: Processing a maliciously crafted file may lead to unexpected app termination Description: An out-of-bounds read issue was addressed with improved input validation.
apple
CVE-2024-44171MEDIUMCVSS 4.6v17.72024-09-16
CVE-2024-44171 [MEDIUM] CVE-2024-44171: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44171 Component: Accessibility Impact: An attacker with physical access to a locked device may be able to Control Nearby Devices via accessibility features Description: This issue was addressed through improved state management.
apple
CVE-2024-40850MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-40850 [MEDIUM] CVE-2024-40850: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-40850 Component: Game Center Impact: An app may be able to access user-sensitive data Description: A file access issue was addressed with improved input validation.
apple
CVE-2024-44127MEDIUMCVSS 5.3v17.72024-09-16
CVE-2024-44127 [MEDIUM] CVE-2024-44127: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44127 Component: Safari Private Browsing Impact: Private Browsing tabs may be accessed without authentication Description: This issue was addressed through improved state management.
apple
CVE-2024-44176MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-44176 [MEDIUM] CVE-2024-44176: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44176 Component: ImageIO Impact: Processing an image may lead to a denial-of-service Description: An out-of-bounds access issue was addressed with improved bounds checking.
apple
CVE-2024-40844MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-40844 [MEDIUM] CVE-2024-40844: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-40844 Component: Shortcuts Impact: An app may be able to observe data displayed to the user by Shortcuts Description: A privacy issue was addressed with improved handling of temporary files.
apple
CVE-2024-44184MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-44184 [MEDIUM] CVE-2024-44184: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44184 Component: Transparency Impact: An app may be able to access user-sensitive data Description: A permissions issue was addressed with additional restrictions.
apple
CVE-2024-27876MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-27876 [MEDIUM] CVE-2024-27876: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-27876 Component: Compression Impact: Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files Description: A race condition was addressed with improved locking.
apple
CVE-2024-44191MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-44191 [MEDIUM] CVE-2024-44191: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44191 Component: Kernel Impact: An app may gain unauthorized access to Bluetooth Description: This issue was addressed through improved state management.
apple
CVE-2024-44169MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-44169 [MEDIUM] CVE-2024-44169: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44169 Component: IOSurfaceAccelerator Impact: An app may be able to cause unexpected system termination Description: The issue was addressed with improved memory handling.
apple
CVE-2024-44158MEDIUMCVSS 5.5v17.72024-09-16
CVE-2024-44158 [MEDIUM] CVE-2024-44158: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44158 Component: Shortcuts Impact: A shortcut may output sensitive user data without consent Description: This issue was addressed with improved redaction of sensitive information.
apple
CVE-2024-44179LOWCVSS 2.4v17.72024-09-16
CVE-2024-44179 [LOW] CVE-2024-44179: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-44179 Component: Siri Impact: An attacker with physical access to a device may be able to read contact numbers from the lock screen Description: This issue was addressed by restricting options offered on a locked device.
apple
CVE-2024-40791LOWCVSS 3.3v17.72024-09-16
CVE-2024-40791 [LOW] CVE-2024-40791: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-40791 Component: Mail Accounts Impact: An app may be able to access information about a user's contacts Description: A privacy issue was addressed with improved private data redaction for log entries.
apple
Apple Ios 17.7 And Ipados vulnerabilities | cvebase