Apple systems and Safari: privilege escalation via cookie management issue (CVE-2024-54467) #shorts

Summary

Today, we're discussing the critical security vulnerability identified as CVE-2024-54467, affecting multiple Apple platforms. This vulnerability, published on March 10, 2025, could allow a malicious website to exfiltrate data across different origins, posing a significant threat to user privacy and data security.

Product details

The affected products include a range of Apple operating systems and applications: macOS versions earlier than 15, tvOS versions earlier than 18, visionOS before version 2, iOS and iPadOS versions up to 17, watchOS up to version 10, and Safari versions before 18. Each of these will require updates to ensure that users remain protected against potential exploits.

Vulnerability type summary

CVE-2024-54467 is classified as a cookie management issue, which is a broader category under web security vulnerabilities. This involves the improper handling of cookies, which are often used to store user information, and can lead to a malicious website gaining unauthorized access to cross-origin data.

Details of the vulnerability

The vulnerability stems from suboptimal state management of cookies, allowing a malicious website to exploit this flaw and potentially exfiltrate data across different web origins. This problem affects a wide array of Apple operating systems and requires users to update their systems to the latest versions, such as watchOS 11, macOS Sequoia 15, Safari 18, visionOS 2, iOS 18 and iPadOS 18, and tvOS 18, where the issue has been resolved.

Conclusion

In conclusion, CVE-2024-54467 highlights the continuous battle between evolving security threats and the need for robust software design. We urge all users of affected Apple products to update their systems promptly to mitigate potential risks. As always, staying informed and vigilant is key to maintaining cybersecurity.

Watch the full video on YouTube: CVE-2024-54467

Remediation and exploitation details

This chain involves the following actors

This following systems are involved

Attack entry point

Remediation actions

Exploitation actions

Related Content

NOTE: The following related content has not been vetted and may be unsafe.

CVE database technical details

CVE ID
CVE-2024-54467
Description
A cookie management issue was addressed with improved state management. This issue is fixed in watchOS 11, macOS Sequoia 15, Safari 18, visionOS 2, iOS 18 and iPadOS 18, tvOS 18. A malicious website may exfiltrate data cross-origin.
Provider
apple
CWE / problem types
A malicious website may exfiltrate data cross-origin
Affected Software Versions
Apple:macOS:[{'version': 'unspecified', 'status': 'affected', 'lessThan': '15', 'versionType': 'custom'}],Apple:tvOS:[{'version': 'unspecified', 'status': 'affected', 'lessThan': '18', 'versionType': 'custom'}],Apple:visionOS:[{'version': 'unspecified', 'status': 'affected', 'lessThan': '2', 'versionType': 'custom'}],Apple:iOS and iPadOS:[{'version': 'unspecified', 'status': 'affected', 'lessThan': '18', 'versionType': 'custom'}],Apple:watchOS:[{'version': 'unspecified', 'status': 'affected', 'lessThan': '11', 'versionType': 'custom'}],Apple:Safari:[{'version': 'unspecified', 'status': 'affected', 'lessThan': '18', 'versionType': 'custom'}]
Date Published
2025-03-10T19:11:13.993Z
Last Updated
2025-03-11T02:37:47.701Z