CVE-2024-44191

CVE Database · CVE-2024-44191

CVE-2024-44191

· MEDIUMModified

CVSS v3.1

5.5

EPSS

0.25%

Published

Sep 16, 2024

Modified

Apr 2, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

This issue was addressed through improved state management. This issue is fixed in Xcode 16, iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. An app may gain unauthorized access to Bluetooth.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Affected Products (7)

apple · xcode (up to 16.0)vulnerable

apple · ipados (up to 17.7)vulnerable

apple · iphone_os (up to 17.7)vulnerable

apple · macos (up to 15.0)vulnerable

apple · tvos (up to 18.0)vulnerable

apple · visionos (up to 2.0)vulnerable

apple · watchos (up to 11.0)vulnerable

References (11)

https://support.apple.com/en-us/121238

Release NotesVendor Advisory

https://support.apple.com/en-us/121239

Release NotesVendor Advisory

https://support.apple.com/en-us/121240

Release NotesVendor Advisory

https://support.apple.com/en-us/121246

Release NotesVendor Advisory

https://support.apple.com/en-us/121248

Release NotesVendor Advisory

https://support.apple.com/en-us/121249

KEV Catalog EPSS Scores Vendors All CVEs