CVE-2024-44258

HIGH EXPLOITED

Apple Ipados < 17.7.1 - Symlink Following

Title source: rule

Description

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, tvOS 18.1, visionOS 2.1. Restoring a maliciously crafted backup file may lead to modification of protected system files.

Exploits (2)

nomisec WRITEUP 89 stars

by ifpdz · client-side

https://github.com/ifpdz/CVE-2024-44258

View Code ZIP pw:eip

nomisec WORKING POC 2 stars

by missaels235 · local

https://github.com/missaels235/POC-CVE-2024-44258-Py

View Code ZIP pw:eip

References (8)

[Release Notes, Vendor Advisory] https://support.apple.com/en-us/121563

[Release Notes, Vendor Advisory] https://support.apple.com/en-us/121566

[Release Notes, Vendor Advisory] https://support.apple.com/en-us/121567

[Release Notes, Vendor Advisory] https://support.apple.com/en-us/121569

[Mailing List] http://seclists.org/fulldisclosure/2024/Oct/10

[Mailing List] http://seclists.org/fulldisclosure/2024/Oct/15

[Mailing List] http://seclists.org/fulldisclosure/2024/Oct/16

[Mailing List] http://seclists.org/fulldisclosure/2024/Oct/9

Scores

CVSS v3 7.1

EPSS 0.0172

EPSS Percentile 82.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

Details

VulnCheck KEV 2024-11-02

CWE

CWE-59

Status published

Products (8)

Apple/iOS and iPadOS < 17.7.1

Apple/iOS and iPadOS < 18.1

apple/ipados < 17.7.1

apple/iphone_os < 17.7.1

apple/tvos < 18.1

Apple/tvOS < 18.1

apple/visionos < 2.1

Apple/visionOS < 2.1

Published Oct 28, 2024

Tracked Since Feb 18, 2026