Medium severity5.5NVD Advisory· Published Sep 17, 2024· Updated Jun 17, 2026
CVE-2024-40850
CVE-2024-40850
Description
A file access issue was addressed with improved input validation. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7, tvOS 18, visionOS 2, watchOS 11. An app may be able to access user-sensitive data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <17.7
- (no CPE)range: iPadOS 17.7, iPadOS 18
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*range: <13.7
- (no CPE)range: macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*range: <18.0
- (no CPE)range: tvOS 18
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*range: <2.0
- (no CPE)range: visionOS 2
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*range: <11.0
- (no CPE)range: watchOS 11
- Range: iOS 17.7, iOS 18
Patches
Vulnerability mechanics
References
14- support.apple.com/en-us/121234nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121238nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121240nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121246nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121247nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121248nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121249nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121250nvdRelease NotesVendor Advisory
- seclists.org/fulldisclosure/2024/Sep/32nvd
- seclists.org/fulldisclosure/2024/Sep/33nvd
- seclists.org/fulldisclosure/2024/Sep/36nvd
- seclists.org/fulldisclosure/2024/Sep/39nvd
- seclists.org/fulldisclosure/2024/Sep/40nvd
- seclists.org/fulldisclosure/2024/Sep/41nvd
News mentions
0No linked articles in our index yet.