PT-2024-29109 · Apple · Ipados+1
Abhay Kailasia
+1
·
Published
2024-09-16
·
Updated
2024-12-12
·
CVE-2024-40852
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 18
iPadOS versions prior to 18
Description
This issue allows an attacker to see recent photos without authentication in Assistive Access. The issue was addressed by restricting options offered on a locked device.
Recommendations
For iOS versions prior to 18, update to iOS 18 to resolve the issue.
For iPadOS versions prior to 18, update to iPadOS 18 to resolve the issue.
Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ios
Ipados