We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-44255



Description

A path handling issue was addressed with improved logic. This issue is fixed in visionOS 2.1, iOS 18.1 and iPadOS 18.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, tvOS 18.1. A malicious app may be able to run arbitrary shortcuts without user consent.

Reserved 2024-08-20 | Published 2024-10-28 | Updated 2024-11-01 | Assigner apple

Problem types

A malicious app may be able to run arbitrary shortcuts without user consent

Product status

Any version before 14.7
affected

Any version before 2.1
affected

Any version before 13.7
affected

Any version before 18.1
affected

Any version before 11.1
affected

Any version before 18.1
affected

References

support.apple.com/en-us/121570

support.apple.com/en-us/121566

support.apple.com/en-us/121568

support.apple.com/en-us/121569

support.apple.com/en-us/121565

support.apple.com/en-us/121563

cve.org (CVE-2024-44255)

nvd.nist.gov (CVE-2024-44255)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-44255

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.