CVE-2024-44252

Summary

A logic issue was addressed with improved file handling. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, tvOS 18.1, visionOS 2.1. Restoring a maliciously crafted backup file may lead to modification of protected system files.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOS0 < 17.7.1affected
AppleiOS and iPadOS0 < 18.1affected
AppletvOS0 < 18.1affected
ApplevisionOS0 < 2.1affected

Weaknesses

  • Restoring a maliciously crafted backup file may lead to modification of protected system files

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References