PT-2025-3045 · Apple · Ipados+4
K宝
·
Published
2024-10-28
·
Updated
2025-01-23
·
CVE-2024-54535
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
watchOS versions prior to 11.1
visionOS versions prior to 2.1
iOS versions prior to 18.1
iPadOS versions prior to 18.1
Description
A path handling issue was addressed with improved logic. An attacker with access to calendar data could also read reminders.
Recommendations
For watchOS versions prior to 11.1, update to watchOS 11.1 to resolve the issue.
For visionOS versions prior to 2.1, update to visionOS 2.1 to resolve the issue.
For iOS versions prior to 18.1, update to iOS 18.1 to resolve the issue.
For iPadOS versions prior to 18.1, update to iPadOS 18.1 to resolve the issue.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos
Ios
Ipados
Visionos
Watchos