mickmick.net

Apple Products Multiple Vulnerabilities

Release Date: 29 Oct 2024

RISK: Medium Risk

TYPE: Operating Systems - Mobile & Apps

Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, spoofing, sensitive information disclosure, data manipulation, remote code execution and security restriction bypass on the targeted system.

---

Impact

• Denial of Service
• Elevation of Privilege
• Security Restriction Bypass
• Information Disclosure
• Data Manipulation
• Spoofing
• Remote Code Execution

---

System / Technologies affected

• Versions prior to iOS 18.1 and iPadOS 18.1
• Versions prior to iOS 17.7.1 and iPadOS 17.7.1
• Versions prior to macOS Sequoia 15.1
• Versions prior to macOS Sequoia 14.7.1
• Versions prior to macOS Ventura 13.7.1
• Versions prior to watchOS 11.1
• Versions prior to tvOS 18.1
• Versions prior to visionOS 2.1

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

 

• iOS 18.1 and iPadOS 18.1
• iOS 17.7.1 and iPadOS 17.7.1
• macOS Sequoia 15.1
• macOS Sequoia 14.7.1
• macOS Ventura 13.7.1
• watchOS 11.1
• tvOS 18.1
• visionOS 2.1

---

Vulnerability Identifier

• CVE-2024-38476
• CVE-2024-38477
• CVE-2024-39573
• CVE-2024-40851
• CVE-2024-40855
• CVE-2024-40858
• CVE-2024-40867
• CVE-2024-44122
• CVE-2024-44126
• CVE-2024-44137
• CVE-2024-44144
• CVE-2024-44155
• CVE-2024-44156
• CVE-2024-44159
• CVE-2024-44175
• CVE-2024-44194
• CVE-2024-44195
• CVE-2024-44196
• CVE-2024-44197
• CVE-2024-44211
• CVE-2024-44213
• CVE-2024-44215
• CVE-2024-44216
• CVE-2024-44218
• CVE-2024-44222
• CVE-2024-44223
• CVE-2024-44229
• CVE-2024-44231
• CVE-2024-44235
• CVE-2024-44236
• CVE-2024-44237
• CVE-2024-44239
• CVE-2024-44240
• CVE-2024-44244
• CVE-2024-44247
• CVE-2024-44251
• CVE-2024-44252
• CVE-2024-44253
• CVE-2024-44254
• CVE-2024-44255
• CVE-2024-44256
• CVE-2024-44257
• CVE-2024-44258
• CVE-2024-44259
• CVE-2024-44260
• CVE-2024-44261
• CVE-2024-44262
• CVE-2024-44263
• CVE-2024-44264
• CVE-2024-44265
• CVE-2024-44267
• CVE-2024-44269
• CVE-2024-44270
• CVE-2024-44273
• CVE-2024-44274
• CVE-2024-44275
• CVE-2024-44277
• CVE-2024-44278
• CVE-2024-44279
• CVE-2024-44280
• CVE-2024-44281
• CVE-2024-44282
• CVE-2024-44283
• CVE-2024-44284
• CVE-2024-44285
• CVE-2024-44287
• CVE-2024-44289
• CVE-2024-44292
• CVE-2024-44293
• CVE-2024-44294
• CVE-2024-44295
• CVE-2024-44296
• CVE-2024-44297
• CVE-2024-44298
• CVE-2024-44301
• CVE-2024-44302

---

Source

• Apple

---

Related Link

• https://support.apple.com/en-us/121563
• https://support.apple.com/en-us/121567
• https://support.apple.com/en-us/121564
• https://support.apple.com/en-us/121570
• https://support.apple.com/en-us/121568
• https://support.apple.com/en-us/121565
• https://support.apple.com/en-us/121569
• https://support.apple.com/en-us/121566