Login Sign Up

CVE-2024-54494

5.9 MEDIUM

📋 TL;DR

This CVE describes a race condition vulnerability in Apple operating systems that allows an attacker to create a read-only memory mapping that can be written to. This affects multiple Apple platforms including iOS, iPadOS, macOS, watchOS, tvOS, and visionOS. The vulnerability could potentially allow unauthorized memory modification.

💻 Affected Systems

Products:
  • iOS
  • iPadOS
  • macOS
  • watchOS
  • tvOS
  • visionOS
Versions: Versions prior to iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2
Operating Systems: Apple iOS, Apple iPadOS, Apple macOS, Apple watchOS, Apple tvOS, Apple visionOS
Default Config Vulnerable: ⚠️ Yes
Notes: All default configurations of affected Apple operating systems are vulnerable until patched.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Tvos by Apple

View all CVEs affecting Tvos →

Visionos by Apple

View all CVEs affecting Visionos →

Watchos by Apple

View all CVEs affecting Watchos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could potentially execute arbitrary code with kernel privileges, leading to complete system compromise, data theft, or persistent malware installation.

🟠

Likely Case

Local privilege escalation allowing an attacker to gain elevated privileges on the affected device, potentially accessing sensitive data or installing unauthorized software.

🟢

If Mitigated

With proper security controls and updated systems, the risk is limited to denial of service or minor information disclosure.

🌐 Internet-Facing: LOW
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: HIGH

Race condition vulnerabilities typically require precise timing and local access, making exploitation challenging but possible for skilled attackers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2

Vendor Advisory: https://support.apple.com/en-us/121837

Restart Required: Yes

Instructions:

1. Open Settings app. 2. Navigate to General > Software Update. 3. Download and install the latest available update for your device. 4. Restart the device when prompted.

🔧 Temporary Workarounds

No effective workarounds available

all

This is a kernel-level race condition vulnerability that requires patching at the operating system level.

🧯 If You Can't Patch

  • Restrict physical and network access to affected devices
  • Implement application allowlisting to prevent unauthorized code execution

🔍 How to Verify

Check if Vulnerable:

Check your device's operating system version against the patched versions listed in the affected systems section.

Check Version:

On Apple devices: Settings > General > About > Software Version

Verify Fix Applied:

Verify that your device is running one of the patched versions listed in the fix_official section.

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic logs
  • Unexpected process crashes
  • Memory access violation logs

Network Indicators:

  • Unusual outbound connections from Apple devices
  • Suspicious local network traffic patterns

SIEM Query:

source="apple_system_logs" AND (event_type="kernel_panic" OR event_type="memory_violation")

📊 Metadata

CVE ID: CVE-2024-54494
CVSS v3 Score: 5.9 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
CWE: CWE-362
Published: December 12, 2024
Last Updated: November 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-54494, you might also want to check these:

CVE-2025-43275 9.8

A race condition vulnerability in macOS allows malicious applications to escape their sandbox restri...

Same vulnerability type (CWE-362)
CVE-2021-32810 9.8

A race condition in crossbeam-deque Rust library versions before 0.7.4 and 0.8.0 allows tasks in wor...

Same vulnerability type (CWE-362)
CVE-2025-30444 9.8

A race condition vulnerability in macOS SMB client allows attackers to cause system termination (ker...

Same vulnerability type (CWE-362)