CVE-2024-44227
Published: 10 March 2025
Description
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Security Summary
CVE-2024-44227 is a memory handling vulnerability that allows an app to cause unexpected system termination or corrupt kernel memory. The issue, associated with CWE-400 (Uncontrolled Resource Consumption), affects iOS and iPadOS versions prior to 18, as well as macOS versions prior to Sequoia 15. Apple addressed the vulnerability through improved memory handling, as detailed in their security updates.
The vulnerability has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N), indicating it is exploitable over a network with low complexity, requiring no privileges or user interaction, and unchanged scope. A remote attacker can leverage a malicious app to achieve high integrity impact, such as kernel memory corruption, potentially leading to system crashes or other disruptions without confidentiality loss or availability impact beyond termination.
Apple's security advisories confirm the fix in iOS 18, iPadOS 18, and macOS Sequoia 15, recommending users update to these versions for mitigation. Additional details are available in the release notes at https://support.apple.com/en-us/121238 and https://support.apple.com/en-us/121250.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Kernel memory corruption vulnerability directly enables T1068 for potential privilege escalation and T1499.004 for system/application exploitation leading to termination or disruption.