CVE-2024-44171

Published: Sep 17, 2024Modified: Nov 4, 2025

4.6

Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 0.9 / Impact: 3.6

Source: NVD

Description

This issue was addressed through improved state management. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, watchOS 11. An attacker with physical access to a locked device may be able to Control Nearby Devices via accessibility features.

Affected (3)

Products: Apple: Ipados, Iphone Os, Watchos

3 products

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Apple Ipados	Before 17.7
Apple Iphone Os	Before 17.7
Apple Watchos	Before 11.0

References (6)

https://support.apple.com/en-us/121240

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/121246

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/121250

Source: product-security@apple.com

Release NotesVendor Advisory

http://seclists.org/fulldisclosure/2024/Sep/32

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/fulldisclosure/2024/Sep/35

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/fulldisclosure/2024/Sep/39

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.