Apple Products Multiple Vulnerabilities

Release Date: 12 Dec 2024 1991 Views

RISK: Medium Risk

TYPE: Operating Systems - Mobile & Apps

Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure, data manipulation and security restriction bypass on the targeted system.

Impact

Remote Code Execution
Denial of Service
Elevation of Privilege
Security Restriction Bypass
Information Disclosure
Data Manipulation

System / Technologies affected

Versions prior to iOS 18.2 and iPadOS 18.2
Versions prior to iPadOS 17.7.3
Versions prior to macOS Sequoia 15.2
Versions prior to macOS Sonoma 14.7.2
Versions prior to macOS Ventura 13.7.2
Versions prior to Safari 18.2
Versions prior to tvOS 18.2
Versions prior to visionOS 2.2
Versions prior to watchOS 11.2

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

iOS 18.2 and iPadOS 18.2
iPadOS 17.7.3
macOS Sequoia 15.2
macOS Sonoma 14.7.2
macOS Ventura 13.7.2
Safari 18.2
tvOS 18.2
visionOS 2.2
watchOS 11.2

Vulnerability Identifier

CVE-2023-32395
CVE-2024-44201
CVE-2024-44220
CVE-2024-44224
CVE-2024-44225
CVE-2024-44243
CVE-2024-44245
CVE-2024-44246
CVE-2024-44248
CVE-2024-44291
CVE-2024-44300
CVE-2024-45490
CVE-2024-54465
CVE-2024-54466
CVE-2024-54474
CVE-2024-54476
CVE-2024-54477
CVE-2024-54479
CVE-2024-54484
CVE-2024-54485
CVE-2024-54486
CVE-2024-54489
CVE-2024-54490
CVE-2024-54491
CVE-2024-54492
CVE-2024-54493
CVE-2024-54494
CVE-2024-54495
CVE-2024-54498
CVE-2024-54500
CVE-2024-54501
CVE-2024-54502
CVE-2024-54503
CVE-2024-54504
CVE-2024-54505
CVE-2024-54506
CVE-2024-54508
CVE-2024-54510
CVE-2024-54513
CVE-2024-54514
CVE-2024-54515
CVE-2024-54524
CVE-2024-54526
CVE-2024-54527
CVE-2024-54528
CVE-2024-54529
CVE-2024-54531
CVE-2024-54534

Source

Apple