CVE-2024-40818

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 16.7.9 Apple iPadOS versions prior to 16.7.9 Apple macOS Ventura versions prior to 13.6.8 Apple iOS versions prior to 17.6 Apple iPadOS versions prior to 17.6 Apple watchOS versions prior to 10.6 Apple macOS Sonoma versions prior to 14.6

Description This issue allows an attacker with physical access to potentially use Siri to access sensitive user data by exploiting options available on a locked device. The issue was addressed by restricting these options.

Recommendations For Apple iOS versions prior to 16.7.9, update to iOS 16.7.9 or later. For Apple iPadOS versions prior to 16.7.9, update to iPadOS 16.7.9 or later. For Apple macOS Ventura versions prior to 13.6.8, update to macOS Ventura 13.6.8 or later. For Apple iOS versions prior to 17.6, update to iOS 17.6 or later. For Apple iPadOS versions prior to 17.6, update to iPadOS 17.6 or later. For Apple watchOS versions prior to 10.6, update to watchOS 10.6 or later. For Apple macOS Sonoma versions prior to 14.6, update to macOS Sonoma 14.6 or later.