CVE-2024-44145 is a vulnerability identified in Apple’s Sidecar feature, which allows macOS devices to use iPads as secondary displays. The flaw stems from improper state management within Sidecar, enabling an attacker with physical access to a macOS device to bypass the Lock Screen protections on connected iOS and iPadOS devices. This bypass could allow unauthorized access to sensitive data or device functionality without requiring authentication or user interaction. The vulnerability affects devices running versions prior to iOS 18, iPadOS 18, and macOS Sequoia 15, where the issue has been addressed through improved state management. The CVSS 3.1 score of 5.7 reflects a medium severity, with the attack vector being physical access (AV:P), high attack complexity (AC:H), no privileges required (PR:N), and no user interaction (UI:N). The impact primarily compromises confidentiality and integrity but does not affect availability. No known exploits have been reported in the wild, but the requirement for physical access limits remote exploitation. The vulnerability highlights risks in multi-device integration features and the importance of robust state management in security-critical components.

The primary impact of CVE-2024-44145 is unauthorized access to iOS and iPadOS devices via a macOS device with Sidecar enabled, potentially exposing sensitive user data and compromising device integrity. Organizations using Apple ecosystems in environments where devices may be physically accessible to unauthorized individuals face increased risk of data breaches or espionage. This could affect corporate confidentiality, especially in sectors handling sensitive information such as government, finance, healthcare, and technology. The vulnerability does not impact device availability but undermines trust in device lock mechanisms. Since exploitation requires physical access, the threat is more pronounced in scenarios with shared or public workspaces, or where devices are left unattended. The lack of known exploits reduces immediate risk, but the medium severity score indicates a meaningful threat that warrants prompt mitigation to prevent potential misuse.

To mitigate CVE-2024-44145, organizations should immediately update affected devices to iOS 18, iPadOS 18, and macOS Sequoia 15 or later, where the vulnerability is fixed. Disable Sidecar on macOS devices if it is not essential, reducing the attack surface. Implement strict physical security controls to prevent unauthorized access to devices, including secure storage and monitoring in shared environments. Employ endpoint management solutions to enforce device update policies and monitor for unauthorized Sidecar usage. Educate users about the risks of leaving devices unattended and the importance of locking devices even in short absences. Consider additional authentication mechanisms such as biometric locks or two-factor authentication to enhance device security. Regularly audit device configurations and access logs to detect anomalous activities related to Sidecar connections.