Search for vulnerabilities
Vulnerability details: VCID-2pfx-b8x4-5bbd
Vulnerability ID VCID-2pfx-b8x4-5bbd
Aliases CVE-2024-44244
Summary A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1, watchOS 11.1, visionOS 2.1, tvOS 18.1, macOS Sequoia 15.1, Safari 18.1. Processing maliciously crafted web content may lead to an unexpected process crash.
Status Published
Exploitability 0.5
Weighted Severity 3.9
Risk 1.9
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-788 Access of Memory Location After End of Buffer
CWE-787 Out-of-bounds Write
System Score Found at
cvssv3 4.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-44244.json
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00324 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00351 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00351 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00351 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
epss 0.00351 https://api.first.org/data/v1/epss?cve=CVE-2024-44244
cvssv3.1 6.5 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1 4.3 https://nvd.nist.gov/vuln/detail/CVE-2024-44244
cvssv3.1 4.3 https://support.apple.com/en-us/121563
ssvc Track https://support.apple.com/en-us/121563
cvssv3.1 4.3 https://support.apple.com/en-us/121564
ssvc Track https://support.apple.com/en-us/121564
cvssv3.1 4.3 https://support.apple.com/en-us/121565
ssvc Track https://support.apple.com/en-us/121565
cvssv3.1 4.3 https://support.apple.com/en-us/121566
ssvc Track https://support.apple.com/en-us/121566
cvssv3.1 4.3 https://support.apple.com/en-us/121569
ssvc Track https://support.apple.com/en-us/121569
cvssv3.1 4.3 https://support.apple.com/en-us/121571
ssvc Track https://support.apple.com/en-us/121571
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-44244.json
https://api.first.org/data/v1/epss?cve=CVE-2024-44244
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-44244
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
121563 https://support.apple.com/en-us/121563
121564 https://support.apple.com/en-us/121564
121565 https://support.apple.com/en-us/121565
121566 https://support.apple.com/en-us/121566
121569 https://support.apple.com/en-us/121569
121571 https://support.apple.com/en-us/121571
2323278 https://bugzilla.redhat.com/show_bug.cgi?id=2323278
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:safari:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
CVE-2024-44244 https://nvd.nist.gov/vuln/detail/CVE-2024-44244
RHSA-2024:9545 https://access.redhat.com/errata/RHSA-2024:9545
RHSA-2024:9553 https://access.redhat.com/errata/RHSA-2024:9553
RHSA-2024:9636 https://access.redhat.com/errata/RHSA-2024:9636
RHSA-2024:9637 https://access.redhat.com/errata/RHSA-2024:9637
RHSA-2024:9638 https://access.redhat.com/errata/RHSA-2024:9638
RHSA-2024:9646 https://access.redhat.com/errata/RHSA-2024:9646
RHSA-2024:9653 https://access.redhat.com/errata/RHSA-2024:9653
RHSA-2024:9679 https://access.redhat.com/errata/RHSA-2024:9679
RHSA-2024:9680 https://access.redhat.com/errata/RHSA-2024:9680
RHSA-2025:10364 https://access.redhat.com/errata/RHSA-2025:10364
USN-7113-1 https://usn.ubuntu.com/7113-1/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-44244.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://nvd.nist.gov/vuln/detail/CVE-2024-44244
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://support.apple.com/en-us/121563
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-30T19:39:31Z/ Found at https://support.apple.com/en-us/121563
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://support.apple.com/en-us/121564
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-30T19:39:31Z/ Found at https://support.apple.com/en-us/121564
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://support.apple.com/en-us/121565
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-30T19:39:31Z/ Found at https://support.apple.com/en-us/121565
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://support.apple.com/en-us/121566
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-30T19:39:31Z/ Found at https://support.apple.com/en-us/121566
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://support.apple.com/en-us/121569
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-30T19:39:31Z/ Found at https://support.apple.com/en-us/121569
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://support.apple.com/en-us/121571
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-30T19:39:31Z/ Found at https://support.apple.com/en-us/121571
Exploit Prediction Scoring System (EPSS)
Percentile 0.54814
EPSS Score 0.00324
Published At July 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:47:26.719056+00:00 Ubuntu USN Importer Import https://usn.ubuntu.com/7113-1/ 37.0.0