VDB
GCVE-110-NCSC-2024-382
GCVE-110-NCSC-2024-382
Advisory PublishedCVSS 9.1/10
Exposure of Sensitive Information to an Unauthorized Actor
Weaknesses (CWE)
CWE-275-CWE-122Heap-based Buffer OverflowCWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-200Exposure of Sensitive Information to an Unauthorized ActorCWE-285Improper AuthorizationCWE-284Improper Access ControlCWE-404Improper Resource Shutdown or ReleaseCWE-942Permissive Cross-domain Policy with Untrusted DomainsCWE-190Integer Overflow or WraparoundCWE-287Improper Authentication
Risk Scores
CVSS 3.1
9.1/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| apple | ios__18 | — | — |
| apple | ipados__17.7 | — | — |
| apple | ios__17.7 | — | — |
| apple | ipados__18 | — | — |
Aliases
CVE-2023-5841CVE-2024-27869CVE-2024-27874CVE-2024-27876CVE-2024-27879CVE-2024-27880CVE-2024-40791CVE-2024-40826CVE-2024-40830CVE-2024-40840CVE-2024-40844CVE-2024-40850CVE-2024-40852CVE-2024-40856CVE-2024-40857CVE-2024-40863CVE-2024-44124CVE-2024-44127CVE-2024-44131CVE-2024-44139CVE-2024-44147CVE-2024-44158CVE-2024-44164CVE-2024-44165CVE-2024-44167CVE-2024-44169CVE-2024-44170CVE-2024-44171CVE-2024-44176CVE-2024-44180CVE-2024-44183CVE-2024-44184CVE-2024-44187CVE-2024-44191CVE-2024-44198CVE-2024-44202
References
Browse GCVE Records
73,866 records in the GCVE database · Updated July 19, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.