CVE-2024-27816

Description

A logic issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker may be able to access user data.

Reserved 2024-02-26 | Published 2024-05-13 | Updated 2025-02-13 | Assigner apple

Problem types

An attacker may be able to access user data

Product status

Any version before 17.5
affected

Any version before 14.5
affected

Any version before 10.5
affected

Any version before 17.5
affected

References

support.apple.com/en-us/HT214101

support.apple.com/en-us/HT214106

support.apple.com/en-us/HT214104

support.apple.com/en-us/HT214102

seclists.org/fulldisclosure/2024/May/17

seclists.org/fulldisclosure/2024/May/10

support.apple.com/kb/HT214102

support.apple.com/kb/HT214104

support.apple.com/kb/HT214106

seclists.org/fulldisclosure/2024/May/12

seclists.org/fulldisclosure/2024/May/16

support.apple.com/kb/HT214101

cve.org (CVE-2024-27816)

nvd.nist.gov (CVE-2024-27816)

Download JSON