iPadOS
iPadOS 17.7
Official advisory18 CVEs fixed by this release.
- Release date
- 2024-09-16
- End of support
- 2025-09-15 EOL
- CVEs fixed
- 18
- CISA KEV
- 0
- Critical
- 0
- High
- 0
- NVD pending
- 18
CVEs fixed
| CVE | Severity | KEV | Published | Description |
|---|---|---|---|---|
|
CVE-2024-44126
[Apple ARKit] Processing a maliciously crafted file may lead to heap corruption |
N/A | — | [Apple ARKit] Processing a maliciously crafted file may lead to heap corruption | |
|
CVE-2024-27876
[Apple Compression] Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files |
N/A | — | [Apple Compression] Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files | |
|
CVE-2024-27879
[Apple UIKit] An attacker may be able to cause unexpected app termination |
N/A | — | [Apple UIKit] An attacker may be able to cause unexpected app termination | |
|
CVE-2024-27880
[Apple ImageIO] Processing a maliciously crafted file may lead to unexpected app termination |
N/A | — | [Apple ImageIO] Processing a maliciously crafted file may lead to unexpected app termination | |
|
CVE-2024-40791
[Apple Mail Accounts] An app may be able to access information about a user's contacts |
N/A | — | [Apple Mail Accounts] An app may be able to access information about a user's contacts | |
|
CVE-2024-40844
[Apple Shortcuts] An app may be able to observe data displayed to the user by Shortcuts |
N/A | — | [Apple Shortcuts] An app may be able to observe data displayed to the user by Shortcuts | |
|
CVE-2024-40850
[Apple Game Center] An app may be able to access user-sensitive data |
N/A | — | [Apple Game Center] An app may be able to access user-sensitive data | |
|
CVE-2024-44127
[Apple Safari Private Browsing] Private Browsing tabs may be accessed without authentication |
N/A | — | [Apple Safari Private Browsing] Private Browsing tabs may be accessed without authentication | |
|
CVE-2024-44158
[Apple Shortcuts] A shortcut may output sensitive user data without consent |
N/A | — | [Apple Shortcuts] A shortcut may output sensitive user data without consent | |
|
CVE-2024-44164
[Apple AppleMobileFileIntegrity] An app may be able to bypass Privacy preferences |
N/A | — | [Apple AppleMobileFileIntegrity] An app may be able to bypass Privacy preferences | |
|
CVE-2024-44165
[Apple Kernel] Network traffic may leak outside a VPN tunnel |
N/A | — | [Apple Kernel] Network traffic may leak outside a VPN tunnel | |
|
CVE-2024-44169
[Apple IOSurfaceAccelerator] An app may be able to cause unexpected system termination |
N/A | — | [Apple IOSurfaceAccelerator] An app may be able to cause unexpected system termination | |
|
CVE-2024-44171
[Apple Accessibility] An attacker with physical access to a locked device may be able to Control Nearby Devices via acc… |
N/A | — | [Apple Accessibility] An attacker with physical access to a locked device may be able to Control Nearby Devices via accessibility features | |
|
CVE-2024-44176
[Apple ImageIO] Processing an image may lead to a denial-of-service |
N/A | — | [Apple ImageIO] Processing an image may lead to a denial-of-service | |
|
CVE-2024-44179
[Apple Siri] An attacker with physical access to a device may be able to read contact numbers from the lock screen |
N/A | — | [Apple Siri] An attacker with physical access to a device may be able to read contact numbers from the lock screen | |
|
CVE-2024-44183
[Apple mDNSResponder] An app may be able to cause a denial-of-service |
N/A | — | [Apple mDNSResponder] An app may be able to cause a denial-of-service | |
|
CVE-2024-44184
[Apple Transparency] An app may be able to access user-sensitive data |
N/A | — | [Apple Transparency] An app may be able to access user-sensitive data | |
|
CVE-2024-44191
[Apple Kernel] An app may gain unauthorized access to Bluetooth |
N/A | — | [Apple Kernel] An app may gain unauthorized access to Bluetooth |