CVE-2024-44261

Published Oct 28, 2024

Last updated 19 days ago

CVSS medium 6.2

Overview

Description
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1. An attacker may be able to view restricted content from the lock screen.
Source
product-security@apple.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.2
Impact score
3.6
Exploitability score
2.5
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity
MEDIUM

Social media

Hype score
Not currently trending

  1. The #iOS18.1 update addresses two WebKit flaws. The first, tracked as CVE-2024-44261, could allow an attacker to view restricted content from the lock screen. The second WebKit vulnerability, CVE-2024-44244, could see the Content Security Policy prevented from being enforced.

    @jadhavdeepak93

    29 Oct 2024

    130 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References