CVE-2024-54507

Summary

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2. An attacker with user privileges may be able to read kernel memory.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOS0 < 18.2affected
ApplemacOS0 < 15.2affected

Weaknesses

  • An attacker with user privileges may be able to read kernel memory

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References