Description

A path handling issue was addressed with improved logic. This issue is fixed in iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, tvOS 18.1, visionOS 2.1, watchOS 11.1. A malicious app may be able to run arbitrary shortcuts without user consent.

INFO

Published Date :

2024-10-28T21:07:44.639Z

Last Modified :

2026-04-02T18:08:22.533Z

Source :

apple
AFFECTED PRODUCTS

The following products are affected by CVE-2024-44255 vulnerability.

Vendors Products
Apple
  • Ipados
  • Iphone Os
  • Mac Os
  • Macos
  • Tvos
  • Visionos
  • Watch Os
  • Watchos
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-44255.

URL Resource
http://seclists.org/fulldisclosure/2024/Oct/11 cve-icon
http://seclists.org/fulldisclosure/2024/Oct/12 cve-icon
http://seclists.org/fulldisclosure/2024/Oct/13 cve-icon
http://seclists.org/fulldisclosure/2024/Oct/15 cve-icon
http://seclists.org/fulldisclosure/2024/Oct/16 cve-icon
http://seclists.org/fulldisclosure/2024/Oct/9 cve-icon
https://support.apple.com/en-us/121563 cve-icon cve-icon
https://support.apple.com/en-us/121564 cve-icon cve-icon
https://support.apple.com/en-us/121565 cve-icon cve-icon
https://support.apple.com/en-us/121566 cve-icon cve-icon
https://support.apple.com/en-us/121568 cve-icon cve-icon
https://support.apple.com/en-us/121569 cve-icon cve-icon
https://support.apple.com/en-us/121570 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact