CVE-2024-54497
📋 TL;DR
This vulnerability in Apple operating systems allows processing malicious web content to cause denial-of-service conditions. It affects users of iOS, iPadOS, macOS, visionOS, tvOS, and watchOS who visit compromised websites or view malicious content. The issue was addressed through improved input validation checks.
💻 Affected Systems
- iOS
- iPadOS
- macOS
- visionOS
- tvOS
- watchOS
📦 What is this software?
Ipados by Apple
Ipados by Apple
Macos by Apple
macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...
Learn more about Macos →Macos by Apple
macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...
Learn more about Macos →Macos by Apple
macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...
Learn more about Macos →Tvos by Apple
Watchos by Apple
⚠️ Risk & Real-World Impact
Worst Case
Complete system crash or freeze requiring reboot, potentially causing data loss or service disruption
Likely Case
Application crash or temporary unresponsiveness when processing malicious web content
If Mitigated
Minimal impact with proper patching and web content filtering
🎯 Exploit Status
Exploitation requires user interaction (visiting malicious website or viewing malicious content). No authentication required for basic denial-of-service.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2
Vendor Advisory: https://support.apple.com/en-us/121837
Restart Required: Yes
Instructions:
1. Open Settings app. 2. Navigate to General > Software Update. 3. Download and install the latest available update. 4. Restart device when prompted.
🔧 Temporary Workarounds
Web Content Filtering
allImplement web filtering to block malicious sites and content
Disable JavaScript
allTemporarily disable JavaScript in browsers to reduce attack surface
🧯 If You Can't Patch
- Implement strict web content filtering and URL blocking
- Restrict access to untrusted websites and web applications
🔍 How to Verify
Check if Vulnerable:
Check current OS version against patched versions listed in affected_systems.versionsCheck Version:
iOS/iPadOS: Settings > General > About > Version; macOS: Apple menu > About This Mac > macOS versionVerify Fix Applied:
Verify OS version matches or exceeds patched versions listed in fix_official.patch_version📡 Detection & Monitoring
Log Indicators:
- Application crashes related to web content processing
- Kernel panics or system crashes after web browsing
- High memory or CPU usage spikes during web content processing
Network Indicators:
- Requests to known malicious domains serving web content
- Unusual patterns of web content downloads
SIEM Query:
source="apple_system_logs" AND (event="crash" OR event="panic") AND process="WebContent"🔗 References
- https://support.apple.com/en-us/121837
- https://support.apple.com/en-us/121839
- https://support.apple.com/en-us/121843
- https://support.apple.com/en-us/121844
- https://support.apple.com/en-us/121845
- https://support.apple.com/en-us/122067
- https://support.apple.com/en-us/122069
- https://support.apple.com/en-us/122070
- http://seclists.org/fulldisclosure/2025/Jan/14
- http://seclists.org/fulldisclosure/2025/Jan/16
- http://seclists.org/fulldisclosure/2025/Jan/17
