Vulnerability Description
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.2 and iPadOS 18.2, iPadOS 17.7.4, macOS Sequoia 15.2, macOS Sonoma 14.7.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. Processing maliciously crafted web content may lead to an unexpected process crash.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Ipados | < 17.7.4 |
| Apple | Iphone Os | < 18.2 |
| Apple | Macos | < 14.7.2 |
| Apple | Tvos | < 18.2 |
| Apple | Visionos | < 2.2 |
| Apple | Watchos | <= 11.2 |
Related Weaknesses (CWE)
References
- https://support.apple.com/en-us/121837Release NotesVendor Advisory
- https://support.apple.com/en-us/121839Release NotesVendor Advisory
- https://support.apple.com/en-us/121840Release NotesVendor Advisory
- https://support.apple.com/en-us/121843Release NotesVendor Advisory
- https://support.apple.com/en-us/121844Release NotesVendor Advisory
- https://support.apple.com/en-us/121845Release NotesVendor Advisory
- https://support.apple.com/en-us/122067Release NotesVendor Advisory
- http://seclists.org/fulldisclosure/2025/Jan/14
FAQ
What is CVE-2024-54478?
CVE-2024-54478 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.2 and iPadOS 18.2, iPadOS 17.7.4, macOS Sequoia 15.2, macOS Sonoma 14.7.2, tvOS 18.2, visionOS ...
How severe is CVE-2024-54478?
CVE-2024-54478 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-54478?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Ipados, Apple Iphone Os, Apple Macos, Apple Tvos, Apple Visionos.