CVE-2024-44274 | THREATINT

Description

The issue was addressed with improved authentication. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, watchOS 11.1, iOS 18.1 and iPadOS 18.1. An attacker with physical access to a locked device may be able to view sensitive user information.

PUBLISHED Reserved 2024-08-20 | Published 2024-10-28 | Updated 2025-11-03 | Assigner apple

Problem types

An attacker with physical access to a locked device may be able to view sensitive user information

Product status

Any version before 17.7

affected

Any version before 11.1

affected

Any version before 18.1

affected

References

seclists.org/fulldisclosure/2024/Oct/14

seclists.org/fulldisclosure/2024/Oct/10

seclists.org/fulldisclosure/2024/Oct/9

support.apple.com/en-us/121567

support.apple.com/en-us/121565

support.apple.com/en-us/121563

cve.org (CVE-2024-44274)

nvd.nist.gov (CVE-2024-44274)