CVE Vulnerabilities

CVE-2024-40840

Published: Sep 17, 2024 | Modified: Mar 25, 2025
CVSS 3.x
4.6
MEDIUM
Source:
NVD
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

This issue was addressed through improved state management. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to use Siri to access sensitive user data.

Affected Software

Name Vendor Start Version End Version
Ipados Apple * 18.0 (excluding)
Iphone_os Apple * 18.0 (excluding)

References