CVE-2024-44147
Description
An app may gain unauthorized access to Local Network on iOS/iPadOS due to a state management issue; fixed in iOS 18 and iPadOS 18.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An app may gain unauthorized access to Local Network on iOS/iPadOS due to a state management issue; fixed in iOS 18 and iPadOS 18.
Vulnerability
A state management issue in iOS and iPadOS prior to version 18 allows an app to gain unauthorized access to the Local Network. The vulnerability affects iPhone XS and later, iPad Pro 13-inch, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 7th generation and later, and iPad mini 5th generation and later [1].
Exploitation
An app running on the device can exploit this state management flaw to access the Local Network without proper authorization. No user interaction beyond installing the app is required, as the bug is triggered during normal app operation [1].
Impact
Successful exploitation allows the app to interact with other devices on the local network, potentially leading to information disclosure, data exfiltration, or further network-based attacks. The attacker gains unauthorized network access from the compromised device [1].
Mitigation
Apple addressed the issue in iOS 18 and iPadOS 18, released on September 16, 2024. Users should update their devices to the latest operating system version. No workarounds are available for unpatched versions [1].
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Range: <18
- Range: <18
- Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.