A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, watchOS 10.5, macOS Sonoma 14.5. An app may be able to read sensitive location information.
History

Thu, 12 Dec 2024 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple ipados
CPEs cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Vendors & Products Apple ipad Os
Apple ipados

Mon, 09 Dec 2024 19:30:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ipad Os
Apple iphone Os
Apple macos
Apple tvos
Apple watchos
Weaknesses CWE-22
CPEs cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ipad Os
Apple iphone Os
Apple macos
Apple tvos
Apple watchos
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2024-05-13T23:00:55.661Z

Updated: 2024-08-02T00:41:55.379Z

Reserved: 2024-02-26T15:32:28.519Z

Link: CVE-2024-27810

cve-icon Vulnrichment

Updated: 2024-08-02T00:41:55.379Z

cve-icon NVD

Status : Analyzed

Published: 2024-05-14T15:13:04.267

Modified: 2024-12-12T14:33:00.640

Link: CVE-2024-27810

cve-icon Redhat

No data.