CVE-2024-44308

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 20, 2024
Updated: Nov 22, 2024

Summary

CVE-2024-44308 is a vulnerability affecting multiple Apple platforms, including Safari, iOS, iPadOS, macOS, and VisionOS. The issue enables arbitrary code execution upon processing maliciously crafted web content. Apple addressed this vulnerability in recent updates, specifically Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Sequoia 15.1.1, iOS 18.1.1, and iPadOS 18.1.1, as well as VisionOS 2.1.1. Despite the patch, there's evidence that this issue was exploited on Intel-based Mac systems before it was fixed.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share