CVE-2024-54494

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Dec 12, 2024
Updated: Dec 16, 2024
CWE ID 362

Summary

CVE-2024-54494 is a race condition vulnerability that has been resolved in multiple Apple operating systems, including iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2, iPadOS 18.2, macOS Ventura 13.7.2, and macOS Sonoma 14.7.2. This issue enabled an attacker to create a read-only memory mapping that could potentially be written to, taking advantage of the race condition. Apple's update addresses this vulnerability by adding additional validation, mitigating the risk of exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share