PT-2025-3034 · Apple · Ipados+3
0Xjprx
+1
·
Published
2024-12-11
·
Updated
2025-02-15
·
CVE-2024-54507
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
macOS versions prior to 15.2
iOS versions prior to 18.2
iPadOS versions prior to 18.2
Description
A type confusion issue was addressed with improved memory handling. An attacker with user privileges may be able to read kernel memory due to information leakage caused by an initial 4-byte load in the XNU kernel.
Recommendations
For macOS versions prior to 15.2, update to macOS Sequoia 15.2 to resolve the issue.
For iOS versions prior to 18.2, update to iOS 18.2 to resolve the issue.
For iPadOS versions prior to 18.2, update to iPadOS 18.2 to resolve the issue.
Fix
Out of bounds Read
Type Confusion
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apple Macos
Xnu Kernel
Ios
Ipados