Apple

visionOS

437 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2024-44252

  • EPSS 0.05%
  • Veröffentlicht 28.10.2024 21:15:06
  • Zuletzt bearbeitet 02.04.2026 19:18:28

A logic issue was addressed with improved file handling. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, tvOS 18.1, visionOS 2.1. Restoring a maliciously crafted backup file may lead to modification of protected system ...

7.8

CVE-2024-44126

  • EPSS 0.03%
  • Veröffentlicht 28.10.2024 21:15:05
  • Zuletzt bearbeitet 02.04.2026 19:18:01

The issue was addressed with improved checks. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7.1, visionOS 2. Processing a maliciously crafted file may lead to heap corrupt...

5.5

CVE-2024-44194

  • EPSS 0.02%
  • Veröffentlicht 28.10.2024 21:15:05
  • Zuletzt bearbeitet 02.04.2026 19:18:18

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, visionOS 2.1, watchOS 11.1. An app may be able to access sensitive user data.

5.5

CVE-2024-44185

  • EPSS 0.04%
  • Veröffentlicht 24.10.2024 17:15:16
  • Zuletzt bearbeitet 02.04.2026 19:18:16

The issue was addressed with improved checks. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing maliciously crafted web content may lead to an unexpected process crash.

9.3

CVE-2024-44206

  • EPSS 0.54%
  • Veröffentlicht 24.10.2024 17:15:16
  • Zuletzt bearbeitet 02.04.2026 19:18:20

An issue in the handling of URL protocols was addressed with improved logic. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. A user may be able to bypass some web content restric...

6.5

CVE-2024-44187

  • EPSS 0.55%
  • Veröffentlicht 17.09.2024 00:15:52
  • Zuletzt bearbeitet 02.04.2026 19:18:17

A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue is fixed in Safari 18, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. A malicious website may exf...

5.5

CVE-2024-44191

  • EPSS 0.04%
  • Veröffentlicht 17.09.2024 00:15:52
  • Zuletzt bearbeitet 02.04.2026 19:18:18

This issue was addressed through improved state management. This issue is fixed in Xcode 16, iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. An app may gain unauthorized access to Bluetooth.

5.5

CVE-2024-44198

  • EPSS 0.04%
  • Veröffentlicht 17.09.2024 00:15:52
  • Zuletzt bearbeitet 02.04.2026 19:18:19

An integer overflow was addressed through improved input validation. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. Processing maliciously crafted web content may lead to an unexpected process crash.

7.5

CVE-2024-44165

  • EPSS 0.38%
  • Veröffentlicht 17.09.2024 00:15:51
  • Zuletzt bearbeitet 02.04.2026 19:18:08

A logic issue was addressed with improved checks. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7, visionOS 2. Network traffic may leak outside a VPN tunnel.

5.5

CVE-2024-44167

  • EPSS 0.23%
  • Veröffentlicht 17.09.2024 00:15:51
  • Zuletzt bearbeitet 02.04.2026 19:18:10

This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7, visionOS 2. An app may be able to overwrite arbitrary files.