Apple Ios 18.1 And Ipados vulnerabilities

CVE-2024-44241 [CRITICAL] CVE-2024-44241: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44241 Component: IOMobileFrameBuffer Impact: An attacker may be able to cause unexpected system termination or arbitrary code execution in DCP firmware Description: The issue was addressed with improved bounds checks.

CVE-2024-44299 [CRITICAL] CVE-2024-44299: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44299 Component: IOMobileFrameBuffer Impact: An attacker may be able to cause unexpected system termination or arbitrary code execution in DCP firmware Description: The issue was addressed with improved bounds checks.

CVE-2024-40867 [CRITICAL] CVE-2024-40867: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-40867 Component: IOSurface Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: A use-after-free issue was addressed with improved memory management.

CVE-2024-44242 [CRITICAL] CVE-2024-44242: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44242 Component: IOMobileFrameBuffer Impact: An attacker may be able to cause unexpected system termination or arbitrary code execution in DCP firmware Description: The issue was addressed with improved bounds checks.

CVE-2024-54538 [HIGH] CVE-2024-54538: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-54538 Component: Security Impact: A remote attacker may be able to cause a denial-of-service Description: A denial-of-service issue was addressed with improved input validation.

CVE-2024-44218 [HIGH] CVE-2024-44218: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44218 Component: SceneKit Impact: Processing a maliciously crafted file may lead to heap corruption Description: This issue was addressed with improved checks.

CVE-2024-44277 [HIGH] CVE-2024-44277: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44277 Component: Pro Res Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: The issue was addressed with improved memory handling.

CVE-2024-44252 [HIGH] CVE-2024-44252: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44252 Component: MobileBackup Impact: Restoring a maliciously crafted backup file may lead to modification of protected system files Description: A logic issue was addressed with improved file handling.

CVE-2024-44285 [HIGH] CVE-2024-44285: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44285 Component: IOSurface Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: A use-after-free issue was addressed with improved memory management.

CVE-2024-44255 [HIGH] CVE-2024-44255: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44255 Component: App Support Impact: A malicious app may be able to run arbitrary shortcuts without user consent Description: A path handling issue was addressed with improved logic.

CVE-2024-44258 [HIGH] CVE-2024-44258: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44258 Component: Managed Configuration Impact: Restoring a maliciously crafted backup file may lead to modification of protected system files Description: This issue was addressed with improved handling of symlinks.

CVE-2024-44238 [HIGH] CVE-2024-44238: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44238 Component: IOMobileFrameBuffer Impact: An app may be able to corrupt coprocessor memory Description: The issue was addressed with improved bounds checks.

CVE-2024-44259 [HIGH] CVE-2024-44259: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44259 Component: Safari Downloads Impact: An attacker may be able to misuse a trust relationship to download malicious content Description: This issue was addressed through improved state management.

CVE-2024-54535 [MEDIUM] CVE-2024-54535: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-54535 Component: Calendar Impact: An attacker with access to calendar data could also read reminders Description: A path handling issue was addressed with improved logic.

CVE-2024-44212 [MEDIUM] CVE-2024-44212: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44212 Component: WebKit Impact: Cookies belonging to one origin may be sent to another origin Description: A cookie management issue was addressed with improved state management.

CVE-2024-44278 [MEDIUM] CVE-2024-44278: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44278 Component: Siri Impact: A sandboxed app may be able to access sensitive user data in system logs Description: An information disclosure issue was addressed with improved private data redaction for log entries.

CVE-2024-44201 [MEDIUM] CVE-2024-44201: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44201 Component: Kernel Impact: An app may be able to leak sensitive kernel state Description: An information disclosure issue was addressed with improved private data redaction for log entries.

CVE-2024-44194 [MEDIUM] CVE-2024-44194: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44194 Component: Siri Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved redaction of sensitive information.

CVE-2024-54470 [MEDIUM] CVE-2024-54470: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-54470 Component: Siri Impact: An attacker with physical access may be able to access contacts from the lock screen Description: A logic issue was addressed with improved checks.

CVE-2024-44273 [MEDIUM] CVE-2024-44273: iOS 18.1 and iPadOS 18.1 Apple Security Update: About the security content of iOS 18.1 and iPadOS 18.1 Product: iOS 18.1 and iPadOS Version: 18.1 CVE: CVE-2024-44273 Component: CoreMedia Playback Impact: A malicious app may be able to access private information Description: This issue was addressed with improved handling of symlinks.