cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-54538,https://securityvulnerability.io/vulnerability/CVE-2024-54538,Denial-of-Service Vulnerability in Apple Products Due to Input Validation Issues,"CVE-2024-54538 is a critical denial-of-service vulnerability affecting multiple Apple operating systems. The flaw stems from inadequate input validation, allowing a remote attacker to exploit this vulnerability and potentially disrupt services. Recent updates have addressed this issue, with fixes implemented in visionOS 2.1, iOS 18.1, iPadOS 18.1, iOS 17.7.1, iPadOS 17.7.1, tvOS 18.1, macOS Sonoma 14.7.1, watchOS 11.1, and macOS Ventura 13.7.1. Users are strongly advised to update their devices to mitigate any security risks.",Apple,"Mac OS,iPhone OS,iPad OS,Watch OS,Visionos,TV OS",7.5,HIGH,0.0009299999801442027,false,false,false,false,,false,false,2024-12-20T01:15:00.000Z,0
CVE-2024-54534,https://securityvulnerability.io/vulnerability/CVE-2024-54534,Safari 18.2 Fixes Memory Handling Issue to Prevent Malicious Content Abuse,"A memory corruption vulnerability has been identified affecting various Apple operating systems. This issue is caused by mishandling of memory when processing specially crafted web content, which can lead to unintended behavior or crashes. The vulnerability has been mitigated in the latest updates for watchOS, visionOS, tvOS, macOS, Safari, iOS, and iPadOS. Users are strongly advised to apply the corresponding updates to ensure protection against potential exploits that may arise from this issue.",Apple,"TV OS,Visionos,Mac OS,Watch OS,iOS And iPad OS,Safari",9.8,CRITICAL,0.001069999998435378,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54527,https://securityvulnerability.io/vulnerability/CVE-2024-54527,Data Access Vulnerability in Apple Products,"A vulnerability present in various Apple operating systems allows unauthorized access to sensitive user data by applications. This issue has been addressed through enhanced verification checks in the latest updates, ensuring that sensitive information is better protected. Users are encouraged to update their devices to the latest versions to mitigate potential privacy risks that arise from this flaw.",Apple,"Watch OS,iPad OS,TV OS,iPhone OS,Mac OS",5.5,MEDIUM,0.00044999999227002263,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,340
CVE-2024-54485,https://securityvulnerability.io/vulnerability/CVE-2024-54485,,"The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.3, iOS 18.2 and iPadOS 18.2. An attacker with physical access to an iOS device may be able to view notification content from the lock screen.",Apple,"iPhone OS,iPad OS",2.4,LOW,0.0004400000034365803,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54503,https://securityvulnerability.io/vulnerability/CVE-2024-54503,,An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.2 and iPadOS 18.2. Muting a call while ringing may not result in mute being enabled.,Apple,"iPad OS,iPhone OS",4.2,MEDIUM,0.0004600000102072954,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54526,https://securityvulnerability.io/vulnerability/CVE-2024-54526,Access Control Vulnerability in Apple Products,"A security issue has been identified in certain Apple products that could allow an unauthorized malicious app to access users' private information. This vulnerability has been mitigated in the latest updates, which enhance the existing checks to prevent unauthorized access. Users are encouraged to update their devices to the latest versions to ensure adequate protection against potential exploitation.",Apple,"Watch OS,iPad OS,TV OS,iPhone OS,Mac OS",5.5,MEDIUM,0.00044999999227002263,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-44212,https://securityvulnerability.io/vulnerability/CVE-2024-44212,,"A cookie management issue was addressed with improved state management. This issue is fixed in Safari 18.1, visionOS 2.1, tvOS 18.1, iOS 18.1 and iPadOS 18.1, watchOS 11.1. Cookies belonging to one origin may be sent to another origin.",Apple,"iPad OS,iPhone OS,Watch OS,Visionos,TV OS,Safari",5.3,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54494,https://securityvulnerability.io/vulnerability/CVE-2024-54494,Race Condition Vulnerability in Apple Products,"This vulnerability arises from a race condition affecting several Apple operating systems, allowing attackers to potentially create a read-only memory mapping that can be written to, undermining data integrity and system reliability. Additional validation measures were implemented in the latest updates to mitigate this issue. Users are encouraged to update their devices to the latest software versions to ensure protection against potential exploitation.",Apple,"Watch OS,TV OS,Visionos,iPhone OS,Mac OS,iPad OS",5.9,MEDIUM,0.0008900000248104334,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-44241,https://securityvulnerability.io/vulnerability/CVE-2024-44241,Bounds Check Vulnerability in DCP Firmware of Apple Devices,"A vulnerability exists in the DCP firmware of Apple devices that could allow an attacker to exploit insufficient bounds checks. This flaw may lead to unexpected system termination or the potential for arbitrary code execution, impacting the stability and security of affected devices. The issue has been addressed in the latest updates available for iOS and iPadOS, specifically version 18.1. Users are encouraged to update their devices to mitigate the risk associated with this vulnerability.",Apple,iOS And iPad OS,9.8,CRITICAL,0.000910000002477318,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-44290,https://securityvulnerability.io/vulnerability/CVE-2024-44290,Information Disclosure Vulnerability in Apple iOS and iPadOS,"An information disclosure vulnerability was identified in Apple's operating systems, allowing certain applications to ascertain the user's current location. This issue arises due to inadequate redaction of sensitive information. The vulnerability has been rectified in iOS 18.1, iPadOS 18.1, and watchOS 11.1, enhancing the protection of user privacy and safeguarding personal data from unauthorized access.",Apple,"iPad OS,iPhone OS,Watch OS",3.3,LOW,0.0004400000034365803,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54502,https://securityvulnerability.io/vulnerability/CVE-2024-54502,Safari Update Fixes Process Crash Issues with Maliciously Crafted Web Content,"A vulnerability exists within various Apple operating systems that can be triggered by processing malformed web content. This issue can lead to an unexpected process crash, potentially disrupting user experience and application functionality. The vulnerability has been mitigated with enhanced checks in the latest software updates, which secure affected systems against exploitation from specially crafted web content.",Apple,"TV OS,Visionos,Mac OS,Watch OS,iOS And iPad OS,Safari",6.5,MEDIUM,0.0006200000061653554,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,161
CVE-2024-44246,https://securityvulnerability.io/vulnerability/CVE-2024-44246,,"The issue was addressed with improved routing of Safari-originated requests. This issue is fixed in macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, Safari 18.2, iPadOS 17.7.3. On a device with Private Relay enabled, adding a website to the Safari Reading List may reveal the originating IP address to the website.",Apple,"Mac OS,iPad OS,iOS And iPad OS,Safari",5.3,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54508,https://securityvulnerability.io/vulnerability/CVE-2024-54508,Memory Handling Vulnerability in Apple Products,"This vulnerability affects multiple Apple platforms due to inadequate memory management which may allow an attacker to exploit the system by processing specially crafted web content. Such exploitation could lead to unexpected crashes in critical processes, impacting device functionality and user experience. The issue has been rectified in the latest updates of affected products, including iOS, macOS, and Safari, prompting users to upgrade to ensure their devices are secure against potential threats.",Apple,"Watch OS,iPad OS,Mac OS,TV OS,Safari,Visionos,iPhone OS",7.5,HIGH,0.0007399999885819852,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54514,https://securityvulnerability.io/vulnerability/CVE-2024-54514,Sandbox Escape Vulnerability in Apple Products,"A vulnerability has been identified in Apple software that could allow an application to break out of its designated sandbox environment. This security flaw was addressed through enhancements in checks within the affected software versions. Users are encouraged to update their devices promptly to the latest versions of watchOS, tvOS, macOS, iOS, and iPadOS to mitigate any potential security risks associated with this vulnerability. Apple has implemented fixes in versions including watchOS 11.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2, iPadOS 18.2, macOS Ventura 13.7.2, and macOS Sonoma 14.7.2.",Apple,"TV OS,Mac OS,Watch OS,iOS And iPad OS",8.6,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54479,https://securityvulnerability.io/vulnerability/CVE-2024-54479,Web Content Processing Vulnerability in Apple Products,"A vulnerability has been identified in several Apple operating systems and the Safari browser, where the processing of maliciously crafted web content could result in unexpected process crashes. Apple has deployed improved checks to mitigate this issue in the latest updates for iPadOS, watchOS, visionOS, tvOS, macOS, and Safari. Users are encouraged to update their devices to the newest versions to ensure protection against potential exploitation.",Apple,"Watch OS,Mac OS,TV OS,Safari,Visionos,iPhone OS,iPad OS",7.5,HIGH,0.0009299999801442027,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-44201,https://securityvulnerability.io/vulnerability/CVE-2024-44201,,"The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.3, macOS Ventura 13.7.2, iOS 18.1 and iPadOS 18.1, macOS Sonoma 14.7.2. Processing a malicious crafted file may lead to a denial-of-service.",Apple,"iPhone OS,iPad OS,Mac OS",5.5,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-44225,https://securityvulnerability.io/vulnerability/CVE-2024-44225,Logic Issue in Apple iPadOS and macOS Products Leading to Elevated Privileges,"A logic flaw has been identified in various Apple operating systems, including iPadOS, watchOS, tvOS, and macOS. This vulnerability enables unauthorized applications to potentially gain elevated privileges, allowing them to execute actions without the user's consent. Apple has released updates for compromised versions to address this loophole, enhancing the security of the affected systems. It is crucial for users to update their devices to the latest versions to mitigate the risk associated with this vulnerability.",Apple,"TV OS,Mac OS,Watch OS,iPad OS,iOS And iPad OS",7.8,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-44299,https://securityvulnerability.io/vulnerability/CVE-2024-44299,Bounds Check Vulnerability in Apple iOS and iPadOS,"A bounds check vulnerability in the DCP firmware of Apple iOS and iPadOS can potentially lead to unexpected system termination or arbitrary code execution. With the flaws addressed in the recent updates for iOS 18.1 and iPadOS 18.1, users are encouraged to apply these updates to mitigate the risk.",Apple,iOS And iPad OS,9.8,CRITICAL,0.000910000002477318,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-44245,https://securityvulnerability.io/vulnerability/CVE-2024-44245,Memory Handling Vulnerability in Apple Products,"A vulnerability related to memory handling has been identified in several Apple products. This issue poses a risk as an app may exploit it to cause unexpected terminations of the system or potentially corrupt kernel memory. Apple has addressed this vulnerability in various updates across its platforms, including iPadOS 17.7.3, visionOS 2.2, macOS Sequoia 15.2, and more. Users and administrators are encouraged to update their devices to ensure protection against this vulnerability.",Apple,"Visionos,Mac OS,iPad OS,iPhone OS",7.1,HIGH,0.0004400000034365803,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54486,https://securityvulnerability.io/vulnerability/CVE-2024-54486,"Apple Fixes Memory Disclosure Vulnerability in iPadOS, watchOS, tvOS, and macOS Releases","A vulnerability exists within various Apple operating systems that could lead to the disclosure of memory content. This issue arises when processing specially crafted font files, potentially allowing unauthorized access to sensitive process memory. The flaw has been addressed in several updates, including iPadOS 17.7.3, iOS 18.2, and various releases of macOS, watchOS, and visionOS. Users are encouraged to update their devices to mitigate potential risks associated with this issue. For further information, please consult Apple's official support documents.",Apple,"Watch OS,TV OS,Visionos,iPhone OS,Mac OS,iPad OS",6.5,MEDIUM,0.0011599999852478504,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-44242,https://securityvulnerability.io/vulnerability/CVE-2024-44242,Arbitrary Code Execution Vulnerability in DCP Firmware Affecting Apple iOS and iPadOS,"The vulnerability identified in DCP firmware allows an attacker to potentially cause unexpected system termination or execute arbitrary code by exploiting insufficient bounds checks present in the software. The issue has been addressed in the latest updates for iOS and iPadOS, which highlights the importance of keeping devices up-to-date to mitigate such security risks. Users are advised to upgrade to iOS 18.1 and iPadOS 18.1 to ensure the protection against this vulnerability.",Apple,iOS And iPad OS,9.8,CRITICAL,0.000910000002477318,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54492,https://securityvulnerability.io/vulnerability/CVE-2024-54492,"Apple Addresses Network Traffic Alteration Vulnerability in macOS Sequoia 15.2, iOS 18.2, and iPadOS 18.2","This vulnerability concerns a security flaw in Apple's operating systems that could allow an attacker positioned within a privileged network to intercept and manipulate network traffic. The issue arises from the application's failure to utilize HTTPS efficiently when transmitting sensitive information across the network. As a consequence, there is a risk of exposure to man-in-the-middle attacks, potentially compromising the integrity of user data. Apple has addressed this vulnerability in macOS Sequoia 15.2, iOS 18.2, iPadOS 18.2, iPadOS 17.7.3, and visionOS 2.2 by enhancing the handling of network communications.",Apple,"Visionos,Mac OS,iPad OS,iOS And iPad OS",5.9,MEDIUM,0.000539999979082495,false,false,false,false,,true,false,2024-12-12T02:15:00.000Z,8186
CVE-2024-44200,https://securityvulnerability.io/vulnerability/CVE-2024-44200,,This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 18.1 and iPadOS 18.1. An app may be able to read sensitive location information.,Apple,"iPad OS,iPhone OS",3.3,LOW,0.0004400000034365803,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54501,https://securityvulnerability.io/vulnerability/CVE-2024-54501,,"The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. Processing a maliciously crafted file may lead to a denial of service.",Apple,"TV OS,Visionos,Mac OS,Watch OS,iPad OS,iOS And iPad OS",5.5,MEDIUM,0.0004900000058114529,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0
CVE-2024-54500,https://securityvulnerability.io/vulnerability/CVE-2024-54500,,"The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. Processing a maliciously crafted image may result in disclosure of process memory.",Apple,"Watch OS,TV OS,Visionos,iPhone OS,Mac OS,iPad OS",5.5,MEDIUM,0.0004600000102072954,false,false,false,false,,false,false,2024-12-12T02:15:00.000Z,0