CVE-2024-54485
CVSS 3.1 Score 2.4 of 10 (low)
Details
Summary
CVE-2024-54485 is a vulnerability affecting iOS devices where an attacker with physical access can view notification content from the lock screen. This issue was addressed by adding additional logic in iPadOS 17.7.3, iOS 18.2, and iPadOS 18.2. The vulnerability could potentially expose sensitive information, making it crucial for users to apply the updated software to mitigate the risk. The attacker's proximity to the device and physical access are necessary conditions for exploitation, making this a local security concern. The update not only fixes this vulnerability but also provides users with enhanced security features.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- iOS
- iPadOS
- Apple (iPhone OS)
Affected Vendors
- Apple