CVE-2024-27835

CVSS v3.1

2.4

Low

Vector

AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17.5 iPadOS versions prior to 17.5

Description: The issue is related to errors in security settings of the Notes component in iOS and iPadOS, allowing an attacker with physical access to the device to potentially access notes from the lock screen. This is achieved through improved state management.

Recommendations: For iOS versions prior to 17.5, update to iOS 17.5 to resolve the issue. For iPadOS versions prior to 17.5, update to iPadOS 17.5 to resolve the issue.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287CWE-254

Related Identifiers

BDU:2024-05360

CVE-2024-27835

Affected Products

Ios

Ipados

CVE-2024-27835

Weakness Enumeration

Related Identifiers

Affected Products

References · 9