A path handling issue was addressed with improved logic. This issue is fixed in watchOS 11.1, visionOS 2.1, iOS 18.1 and iPadOS 18.1. An attacker with access to calendar data could also read reminders.
CVE ID: CVE-2024-54535
Vendor: Apple
Product: visionOS
EPSS Score: 0.07% (probability of being exploited)
EPSS Percentile: 33.4% (scored less or equal to compared to others)
EPSS Date: 2025-02-13 (when was this score calculated)