CVE-2024-54542

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 27, 2025

Updated: Jan 28, 2025

CWE ID 863

Summary

CVE-2024-54542 is a recently identified authentication vulnerability. In affected versions of Safari, macOS, watchOS, iOS, and iPadOS, private browsing tabs could be accessed without proper authentication. This issue was resolved with improved state management in Safari 18.2, macOS Sequoia 15.2, watchOS 11.2, iOS 18.2, and iPadOS 18.2. Users are advised to update their systems promptly to mitigate this security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS
Apple Safari
iOS
iPadOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/1NwmES
https://www.cve.org/CVERecord?id=CVE-2024-54542
https://nvd.nist.gov/vuln/detail/CVE-2024-54542

Back to Vulnerability Database