CVE-2024-54512

Summary

The issue was addressed by removing the relevant flags. This issue is fixed in iOS 18.2 and iPadOS 18.2, watchOS 11.2. A system binary could be used to fingerprint a user's Apple Account.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOS0 < 18.2affected
ApplewatchOS0 < 11.2affected

Weaknesses

  • A system binary could be used to fingerprint a user's Apple Account

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References