PT-2024-36349 · Apple+9 · Visionos+16

Seunghyun Lee

·

Published

2024-12-11

·

Updated

2025-11-25

·

CVE-2024-54479

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions: iPadOS versions prior to 17.7.3 watchOS versions prior to 11.2 visionOS versions prior to 2.2 tvOS versions prior to 18.2 macOS Sequoia versions prior to 15.2 Safari versions prior to 18.2 iOS versions prior to 18.2 iPadOS versions prior to 18.2
Description: Processing maliciously crafted web content may lead to an unexpected process crash. The issue was addressed with improved checks.
Recommendations: For iPadOS versions prior to 17.7.3, update to iPadOS 17.7.3 or later. For watchOS versions prior to 11.2, update to watchOS 11.2 or later. For visionOS versions prior to 2.2, update to visionOS 2.2 or later. For tvOS versions prior to 18.2, update to tvOS 18.2 or later. For macOS Sequoia versions prior to 15.2, update to macOS Sequoia 15.2 or later. For Safari versions prior to 18.2, update to Safari 18.2 or later. For iOS versions prior to 18.2, update to iOS 18.2 or later. For iPadOS versions prior to 18.2, update to iPadOS 18.2 or later.

Fix

Improper Resource Release

Weakness Enumeration

CWE-404

Related Identifiers

ALSA-2025:0145
ALSA-2025:0146
BDU:2025-04544
CESA-2025_0145
CVE-2024-54479
DLA-4009-1
DSA-5835-1
INFSA-2025_0145
INFSA-2025_0146
MGASA-2025-0313
OPENSUSE-SU-2025_0043-1
OPENSUSE-SU-2025_0096-1
RHSA-2025:0145
RHSA-2025:0146
RHSA-2025:0226
RHSA-2025:0276
RHSA-2025:0277
RHSA-2025:0278
RHSA-2025:0279
RHSA-2025:0282
RHSA-2025:0283
RHSA-2025:10364
RHSA-2025_0145
RHSA-2025_0146
RLSA-2025:0145
SUSE-SU-2025:0043-1
SUSE-SU-2025:0096-1
SUSE-SU-2025:0104-1
SUSE-SU-2025:0735-1
USN-7201-1

Affected Products

Almalinux
Astra Linux
Centos
Debian
Linuxmint
Apple Macos
Red Hat
Rocky Linux
Safari
Suse
Ubuntu
Ios
Ipados
Macos Sequoia
Tvos
Visionos
Watchos