CVE-2024-40839

CVSS 3.1 Score 2.4 of 10 (low)

Details

Published Jan 15, 2025

Updated: Jan 16, 2025

CWE ID 862

Summary

CVE-2024-40839 is a vulnerability affecting iOS and iPadOS where an attacker with physical access to the device can view notification contents from the Lock Screen. Apple addressed this issue through improved state management in iOS 17.5 and iPadOS 17.5. This security flaw posed a risk to the privacy of users' notifications and could allow unauthorized individuals to access sensitive information. The vulnerability was not publicly disclosed before the patch release. Users are strongly encouraged to update their devices to the latest software version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

iOS
iPadOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners