CVE-2024-54507

State: PUBLISHED · Published: 2025-01-27 · Updated: 2026-04-02 · Assigner: apple

Description

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2. An attacker with user privileges may be able to read kernel memory.

CWE

CWE-125 — CWE-125 Out-of-bounds Read

Affected

Apple / iOS and iPadOS — v=0 <18.2 [affected]
Apple / macOS — v=0 <15.2 [affected]

CVSS

(none)

References

https://support.apple.com/en-us/121837
https://support.apple.com/en-us/121839

Source

cvelistV5-main/cves/2024/54xxx/CVE-2024-54507.json