CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-27803: A permissions issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access may...

Description

A permissions issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access may be able to share items from the lock screen.

Classification

CVE ID: CVE-2024-27803

Affected Products

Vendor: Apple

Product: iOS and iPadOS

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 20.11% (scored less or equal to compared to others)

EPSS Date: 2025-03-14 (when was this score calculated)

References

https://support.apple.com/en-us/HT214101
http://seclists.org/fulldisclosure/2024/May/10
https://support.apple.com/kb/HT214101

Timeline

2025-02-14 00:31:44 UTC
CVE

A permissions issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access may...