CVE-2024-27845

LOW

iPadOS < 17.5 - Unprotected Notes Attachment Exposure via Temporary File Handling

Title source: llm

Description

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in iOS 17.5 and iPadOS 17.5. An app may be able to access Notes attachments.

References (3)

Core 3

Core References

https://support.apple.com/en-us/120905

Vendor Advisory

https://support.apple.com/en-us/HT214101

Vendor Advisory

https://support.apple.com/kb/HT214101

Scores

CVSS v3 3.3

EPSS 0.0014

EPSS Percentile 33.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

Status published

Products (3)

Apple/iOS and iPadOS < 17.5

apple/ipados < 17.5

apple/iphone_os < 17.5

Published Jun 10, 2024

Tracked Since Feb 18, 2026