CVE-2024-40851

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.1 and iPadOS 18.1. An attacker with physical access may be able to access contact photos from the lock screen.
References
Link Resource
https://support.apple.com/en-us/121563 Release Notes Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

History

29 Oct 2024, 17:42

Type Values Removed Values Added
CPE cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
CWE NVD-CWE-noinfo
References () https://support.apple.com/en-us/121563 - () https://support.apple.com/en-us/121563 - Release Notes, Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 2.4
First Time Apple ipados
Apple
Apple iphone Os

29 Oct 2024, 14:34

Type Values Removed Values Added
Summary
  • (es) Este problema se solucionó restringiendo las opciones ofrecidas en un dispositivo bloqueado. Este problema se solucionó en iOS 18.1 y iPadOS 18.1. Un atacante con acceso físico podría acceder a las fotos de los contactos desde la pantalla de bloqueo.

28 Oct 2024, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-28 21:15

Updated : 2024-10-30 15:35


NVD link : CVE-2024-40851

Mitre link : CVE-2024-40851

CVE.ORG link : CVE-2024-40851


JSON object : View

Products Affected

apple

  • ipados
  • iphone_os