iPadOS
iPadOS 17.7.3
Official advisory17 CVEs fixed by this release.
- Release date
- 2024-12-11
- End of support
- 2025-09-15 EOL
- CVEs fixed
- 17
- CISA KEV
- 0
- Critical
- 0
- High
- 1
- NVD pending
- 16
CVEs fixed
| CVE | Severity | KEV | Published | Description |
|---|---|---|---|---|
|
CVE-2024-45490
Microsoft Security Update Guide entry — NVD enrichira. |
HIGH 9.8 | — | Microsoft Security Update Guide entry — NVD enrichira. | |
|
CVE-2025-24091
[Apple Libnotify] An app may be able to cause a denial-of-service |
N/A | — | [Apple Libnotify] An app may be able to cause a denial-of-service | |
|
CVE-2024-44201
[Apple libarchive] Processing a malicious crafted file may lead to a denial-of-service |
N/A | — | [Apple libarchive] Processing a malicious crafted file may lead to a denial-of-service | |
|
CVE-2024-44225
[Apple libxpc] An app may be able to gain elevated privileges |
N/A | — | [Apple libxpc] An app may be able to gain elevated privileges | |
|
CVE-2024-44245
[Apple Kernel] An app may be able to cause unexpected system termination or corrupt kernel memory |
N/A | — | [Apple Kernel] An app may be able to cause unexpected system termination or corrupt kernel memory | |
|
CVE-2024-44246
[Apple Safari] On a device with Private Relay enabled, adding a website to the Safari Reading List may reveal the origi… |
N/A | — | [Apple Safari] On a device with Private Relay enabled, adding a website to the Safari Reading List may reveal the originating IP address to the website | |
|
CVE-2024-54468
[Apple Kernel] An app may be able to break out of its sandbox |
N/A | — | [Apple Kernel] An app may be able to break out of its sandbox | |
|
CVE-2024-54479
[Apple WebKit] Processing maliciously crafted web content may lead to an unexpected process crash |
N/A | — | [Apple WebKit] Processing maliciously crafted web content may lead to an unexpected process crash | |
|
CVE-2024-54485
[Apple VoiceOver] An attacker with physical access to an iOS device may be able to view notification content from the l… |
N/A | — | [Apple VoiceOver] An attacker with physical access to an iOS device may be able to view notification content from the lock screen | |
|
CVE-2024-54486
[Apple FontParser] Processing a maliciously crafted font may result in the disclosure of process memory |
N/A | — | [Apple FontParser] Processing a maliciously crafted font may result in the disclosure of process memory | |
|
CVE-2024-54488
[Apple Accounts] Photos in the Hidden Photos Album may be viewed without authentication |
N/A | — | [Apple Accounts] Photos in the Hidden Photos Album may be viewed without authentication | |
|
CVE-2024-54492
[Apple Passwords] An attacker in a privileged network position may be able to alter network traffic |
N/A | — | [Apple Passwords] An attacker in a privileged network position may be able to alter network traffic | |
|
CVE-2024-54494
[Apple Kernel] An attacker may be able to create a read-only memory mapping that can be written to |
N/A | — | [Apple Kernel] An attacker may be able to create a read-only memory mapping that can be written to | |
|
CVE-2024-54500
[Apple ImageIO] Processing a maliciously crafted image may result in disclosure of process memory |
N/A | — | [Apple ImageIO] Processing a maliciously crafted image may result in disclosure of process memory | |
|
CVE-2024-54501
[Apple SceneKit] Processing a maliciously crafted file may lead to a denial of service |
N/A | — | [Apple SceneKit] Processing a maliciously crafted file may lead to a denial of service | |
|
CVE-2024-54505
[Apple WebKit] Processing maliciously crafted web content may lead to memory corruption |
N/A | — | [Apple WebKit] Processing maliciously crafted web content may lead to memory corruption | |
|
CVE-2024-54510
[Apple Kernel] An app may be able to leak sensitive kernel state |
N/A | — | [Apple Kernel] An app may be able to leak sensitive kernel state |