CVE-2024-44258

Oct. 29, 2024, 2:34 p.m.

Product(s) Impacted

visionOS

  • 2.1

tvOS

  • 18.1

iOS

  • 18.1
  • 17.7.1

iPadOS

  • 18.1
  • 17.7.1

Description

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, tvOS 18.1. Restoring a maliciously crafted backup file may lead to modification of protected system files.

Weaknesses

Date

Published: Oct. 28, 2024, 9:15 p.m.

Last Modified: Oct. 29, 2024, 2:34 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

product-security@apple.com

References

https://support.apple.com/en-us/121563
product-security@apple.com
https://support.apple.com/en-us/121566
product-security@apple.com
https://support.apple.com/en-us/121567
product-security@apple.com
https://support.apple.com/en-us/121569
product-security@apple.com