CVE-2024-44290
Description
This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, watchOS 11.1. An app may be able to determine a user’s current location.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An app may determine a user's current location due to insufficient redaction of sensitive information in Apple operating systems.
Vulnerability
Overview
CVE-2024-44290 addresses an information disclosure issue in Apple operating systems where an app could determine a user's current location. The root cause was insufficient redaction of sensitive information, allowing a malicious application to infer location data that should have been protected [1].
AI Insight generated on May 20, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
7cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <18.1
- (no CPE)range: = 18.1
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*range: <11.1
- (no CPE)range: = 11.1
- Range: = 15.1
- Range: = 18.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- support.apple.com/en-us/121563nvdVendor Advisory
- support.apple.com/en-us/121565nvdVendor Advisory
- support.apple.com/en-us/121564nvd
News mentions
0No linked articles in our index yet.