Products
iOS
- 18
iPadOS
- 18
Source
product-security@apple.com
Tags
CVE-2024-40852 details
Published : Sept. 17, 2024, 12:15 a.m.
Last Modified : Sept. 17, 2024, 2:35 p.m.
Last Modified : Sept. 17, 2024, 2:35 p.m.
Description
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18 and iPadOS 18. An attacker may be able to see recent photos without authentication in Assistive Access.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7.5 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
CVSS Data
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
Base Score
7.5
Exploitability Score
3.9
Impact Score
3.6
Base Severity
HIGH
Vector String : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References
URL | Source |
---|---|
https://support.apple.com/en-us/121250 | product-security@apple.com |
This website uses the NVD API, but is not approved or certified by it.