CVE-2024-0258

HIGH

iPadOS < 17.4 - Arbitrary Code Execution via Improper Access Control

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-0258. PoCs published by aliyabuz25.

AI-analyzed exploit summary This repository provides a technical analysis and documentation of CVE-2024-0258, an Apple libxpc vulnerability involving Mach IPC port handling. The included code demonstrates a complex Mach message structure but does not implement a full exploit or privilege escalation.

Description

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.

Exploits (2)

nomisec WRITEUP
by aliyabuz25 · poc
https://github.com/aliyabuz25/CVE-2024-0258

This repository provides a technical analysis and documentation of CVE-2024-0258, an Apple libxpc vulnerability involving Mach IPC port handling. The included code demonstrates a complex Mach message structure but does not implement a full exploit or privilege escalation.

Classification
Writeup 95%
Attack Type
Other
Complexity
Complex
Reliability
Theoretical
Target: Apple libxpc (specific versions not stated, likely patched in 2024 updates)
No auth needed
Prerequisites: Access to the target system to interact with Mach IPC services · Knowledge of the specific vulnerable service name and IPC message structure
mistral-large-3 · analyzed Jul 11, 2026 Full analysis →
github WORKING POC
by aliyabuz25 · objective-cpoc
https://github.com/aliyabuz25/CVE-2024-0258-Research

The repository contains a functional Mach IPC exploit PoC for CVE-2024-0258, demonstrating port manipulation and message sending to a target service. The code includes detailed Mach message handling and port descriptor operations, indicative of a privilege escalation or IPC-based vulnerability.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Complex
Reliability
Reliable
Target: Apple macOS (specific version not specified)
No auth needed
Prerequisites: Access to a vulnerable macOS system · Target service (com.example.mach.ipc) must be running
mistral-large-3 · analyzed Jun 08, 2026 Full analysis →

Scores

CVSS v3 8.6
EPSS 0.0026
EPSS Percentile 17.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-284
Status published
Products (9)
Apple/iOS and iPadOS < 17.4
apple/ipad_os < 17.4
apple/iphone_os < 17.4
Apple/macOS < 14.4
apple/macos 14.0 - 14.4
apple/tvos < 17.4
Apple/tvOS < 17.4
apple/watchos < 10.4
Apple/watchOS < 10.4
Published Mar 08, 2024
Tracked Since Feb 18, 2026