Security Advisory

Apple Product Line November 2024 Security Update Advisory

  • Nov 22 2024

Overview

An update has been released to address vulnerabilities in Apple Product Line. Users of the affected versions are advised to update to the latest version.

 

Affected Products

 

CVE-2024-44306, CVE-2024-44307

  • Apple macOS Sonoma versions: ~ 14.6 (excluded)

 

CVE-2024-44308, CVE-2024-44309

  • Apple iPhone XS or later version: ~ 18.1.1 (excluded)
  • Apple iPad Pro (13-inch, 12.9-inch 3rd generation or later, 11-inch 1st generation or later) version: ~ 18.1.1 (excluded)
  • Apple iPad Air (3rd generation or later) version: ~ 18.1.1 (excluded)
  • Apple iPad 7th generation or later version: ~ 18.1.1 (excluded)
  • Apple iPad mini 5th generation or later version: ~ 18.1.1 (excluded)

 

  • Apple iPhone XS or later version: ~ 17.7.2 (excluded)
  • Apple iPad Pro (13-inch, 12.9-inch 2nd generation or later, 10.5-inch, 11-inch 1st generation or later) version: ~ 17.7.2 (excluded)
  • Apple iPad Air (3rd generation or later) version: ~ 17.7.2 (excluded)
  • Apple iPad 6th generation or later version: ~ 17.7.2 (excluded)
  • Apple iPad mini 5th generation or later version: ~ 17.7.2 (excluded)

 

  • Apple macOS Sequoia version: ~ 15.1.1 (excluded)
  • Apple Vision Pro version: ~ 2.1.1 (excluded)
  • Apple macOS Ventura and Sonoma version: ~ 18.1.1 (excluded)

 

Resolved Vulnerabilities

 

Vulnerability that could allow an app to execute arbitrary code with kernel privileges (CVE-2024-44306, CVE-2024-44307)

Handling maliciously crafted web content could allow arbitrary code execution (CVE-2024-44308)

XSS vulnerability via handling maliciously crafted ube content (CVE-2024-44309)

 

Vulnerability Patches

 

Vulnerability patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2024-44306, CVE-2024-44307

  • Apple macOS Sonoma Version: 14.6

 

CVE-2024-44308, CVE-2024-44309

  • Apple iPhone XS or later version: 18.1.1
  • Apple iPad Pro (13-inch, 12.9-inch 3rd generation or later, 11-inch 1st generation or later) version: 18.1.1
  • Apple iPad Air (3rd generation or later) version: 18.1.1
  • Apple iPad 7th generation or later version: 18.1.1
  • Apple iPad mini 5th generation or later version: 18.1.1

 

  • Apple iPhone XS or later version: 17.7.2
  • Apple iPad Pro (13-inch, 12.9-inch 2nd generation or later, 10.5-inch, 11-inch 1st generation or later) version: 17.7.2
  • Apple iPad Air (3rd generation or later) version: 17.7.2
  • Apple iPad 6th generation or later version: 17.7.2
  • Apple iPad mini 5th generation or later version: 17.7.2

 

  • Apple macOS Sequoia version: 15.1.1
  • Apple Vision Pro version: 2.1.1
  • Apple macOS Ventura and Sonoma version: 18.1.1

 

Referenced Sites

 

[1] About the security content of iOS 18.1.1 and iPadOS 18.1.1

https://support.apple.com/en-us/121752

[2] About the security content of macOS Sequoia 15.1.1

https://support.apple.com/en-us/121753

[3] About the security content of iOS 17.7.2 and iPadOS 17.7.2

https://support.apple.com/en-us/121754

[4] About the security content of visionOS 2.1.1

https://support.apple.com/en-us/121755

[5] About the security content of Safari 18.1.1

https://support.apple.com/en-us/121756

[6] About the security content of macOS Sonoma 14.6

https://support.apple.com/en-us/120911

Tags:

Previous Post

Next Post