Login Sign Up

CVE-2024-44255

7.8 HIGH
Path Traversal

📋 TL;DR

This vulnerability allows a malicious app to execute arbitrary shortcuts without user consent on Apple devices. It affects multiple Apple operating systems including iOS, iPadOS, macOS, visionOS, watchOS, and tvOS. The issue stems from improper path handling that can be exploited to bypass security controls.

💻 Affected Systems

Products:
  • iOS
  • iPadOS
  • macOS
  • visionOS
  • watchOS
  • tvOS
Versions: Versions prior to the patched releases listed in the advisory
Operating Systems: Apple iOS, Apple iPadOS, Apple macOS, Apple visionOS, Apple watchOS, Apple tvOS
Default Config Vulnerable: ⚠️ Yes
Notes: All devices running affected versions are vulnerable by default. The vulnerability requires a malicious app to be installed on the device.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Tvos by Apple

View all CVEs affecting Tvos →

Visionos by Apple

View all CVEs affecting Visionos →

Watchos by Apple

View all CVEs affecting Watchos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could execute arbitrary shortcuts with system-level privileges, potentially leading to data theft, device takeover, or installation of persistent malware.

🟠

Likely Case

Malicious apps could execute unauthorized shortcuts to access sensitive data, modify system settings, or perform actions without user knowledge.

🟢

If Mitigated

With proper app vetting and security controls, the risk is limited to untrusted apps that manage to bypass App Store review processes.

🌐 Internet-Facing: LOW - This vulnerability requires local app execution and does not directly expose services to internet-based attacks.
🏢 Internal Only: MEDIUM - The risk is primarily from malicious apps installed on devices, which could occur through enterprise app distribution or sideloading.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires a malicious app to be installed on the target device. The app must be able to trigger the path handling issue to execute shortcuts without consent.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: visionOS 2.1, iOS 18.1, iPadOS 18.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, tvOS 18.1

Vendor Advisory: https://support.apple.com/en-us/121563

Restart Required: Yes

Instructions:

1. Open Settings app. 2. Navigate to General > Software Update. 3. Download and install the latest available update for your device. 4. Restart the device after installation completes.

🔧 Temporary Workarounds

Restrict App Installation

all

Limit app installation to only trusted sources and disable sideloading capabilities.

Review Shortcut Permissions

all

Audit and restrict shortcut permissions for installed apps through device management policies.

🧯 If You Can't Patch

  • Implement mobile device management (MDM) policies to restrict app installation and shortcut execution
  • Monitor for unusual shortcut execution patterns and review app permissions regularly

🔍 How to Verify

Check if Vulnerable:

Check the device's operating system version against the affected versions listed in the Apple advisory.

Check Version:

On iOS/iPadOS: Settings > General > About > Version. On macOS: Apple menu > About This Mac > macOS version.

Verify Fix Applied:

Verify the device is running one of the patched versions: visionOS 2.1+, iOS 18.1+, iPadOS 18.1+, macOS Ventura 13.7.1+, macOS Sonoma 14.7.1+, watchOS 11.1+, or tvOS 18.1+.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected shortcut execution events
  • Apps attempting to execute shortcuts without user interaction
  • Shortcut execution from untrusted apps

Network Indicators:

  • Unusual network activity following shortcut execution
  • Data exfiltration patterns after shortcut triggers

SIEM Query:

Search for events where app_id NOT IN (trusted_apps) AND action = 'shortcut_execution' AND user_interaction = false

📊 Metadata

CVE ID: CVE-2024-44255
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-22
Published: October 28, 2024
Last Updated: November 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-44255, you might also want to check these:

CVE-2024-43955 10.0

CVE-2024-43955 is an unauthenticated path traversal vulnerability in the Droip WordPress plugin that...

Same vulnerability type (CWE-22)
CVE-2025-54261 10.0

This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted...

Same vulnerability type (CWE-22)
CVE-2024-40628 10.0

This critical vulnerability in JumpServer allows attackers to read arbitrary files from the Celery c...

Same vulnerability type (CWE-22)