Login Sign Up

CVE-2024-54486

6.5 MEDIUM

📋 TL;DR

This vulnerability allows attackers to disclose process memory by tricking a user into processing a maliciously crafted font file. It affects multiple Apple operating systems including iOS, iPadOS, macOS, watchOS, tvOS, and visionOS. Users who process untrusted font files are at risk.

💻 Affected Systems

Products:
  • iOS
  • iPadOS
  • macOS
  • watchOS
  • tvOS
  • visionOS
Versions: Versions prior to the fixed releases listed in the CVE description
Operating Systems: Apple iOS, Apple iPadOS, Apple macOS, Apple watchOS, Apple tvOS, Apple visionOS
Default Config Vulnerable: ⚠️ Yes
Notes: All default configurations are vulnerable. The vulnerability is in font processing components.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Tvos by Apple

View all CVEs affecting Tvos →

Visionos by Apple

View all CVEs affecting Visionos →

Watchos by Apple

View all CVEs affecting Watchos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Sensitive process memory disclosure could lead to credential theft, privilege escalation, or bypass of security mechanisms.

🟠

Likely Case

Information disclosure of non-critical process memory, potentially revealing application state or limited system information.

🟢

If Mitigated

Minimal impact with proper patch management and user education about suspicious font files.

🌐 Internet-Facing: MEDIUM - Attackers could embed malicious fonts in web content or documents, but requires user interaction.
🏢 Internal Only: LOW - Requires processing malicious font files, which is less common in internal-only environments.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires user interaction to process malicious font files. No public exploit code is known at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2

Vendor Advisory: https://support.apple.com/en-us/121837

Restart Required: Yes

Instructions:

1. Open Settings app. 2. Navigate to General > Software Update. 3. Install the latest available update for your device. 4. Restart device after installation completes.

🔧 Temporary Workarounds

Restrict font file processing

all

Configure systems to block or restrict processing of untrusted font files from unknown sources.

User education

all

Train users to avoid opening font files from untrusted sources and to verify file integrity.

🧯 If You Can't Patch

  • Implement application whitelisting to prevent execution of untrusted font processing applications
  • Deploy network filtering to block download of font files from untrusted sources

🔍 How to Verify

Check if Vulnerable:

Check current OS version against affected versions. On macOS: System Settings > General > About. On iOS/iPadOS: Settings > General > About.

Check Version:

macOS: sw_vers -productVersion. iOS/iPadOS: Settings > General > About > Version.

Verify Fix Applied:

Verify OS version matches or exceeds the patched versions listed in the CVE description.

📡 Detection & Monitoring

Log Indicators:

  • Unusual font file processing activity
  • Memory access violations in font-related processes

Network Indicators:

  • Downloads of font files from suspicious sources
  • Unusual outbound connections after font processing

SIEM Query:

process_name:"fontd" OR process_name:"CoreText" AND (event_type:"memory_access" OR event_type:"crash")

📊 Metadata

CVE ID: CVE-2024-54486
CVSS v3 Score: 6.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Published: December 12, 2024
Last Updated: November 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON