An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, visionOS 2.1. Parsing a file may lead to disclosure of user information.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/121563 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/121565 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/121566 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/121567 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/121568 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/121569 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/121570 | Release Notes Vendor Advisory |
| http://seclists.org/fulldisclosure/2024/Oct/10 | |
| http://seclists.org/fulldisclosure/2024/Oct/11 | |
| http://seclists.org/fulldisclosure/2024/Oct/12 | |
| http://seclists.org/fulldisclosure/2024/Oct/13 | |
| http://seclists.org/fulldisclosure/2024/Oct/16 | |
| http://seclists.org/fulldisclosure/2024/Oct/9 |
Configurations
Configuration 1 (hide)
|
History
03 Nov 2025, 23:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Information
Published : 2024-10-28 21:15
Updated : 2025-11-03 23:15
NVD link : CVE-2024-44282
Mitre link : CVE-2024-44282
CVE.ORG link : CVE-2024-44282
JSON object : View
Products Affected
apple
- watchos
- visionos
- iphone_os
- tvos
- macos
- ipados
CWE
CWE-125
Out-of-bounds Read