CVE-2024-44179 is an information disclosure vulnerability identified in Apple iOS and iPadOS operating systems, as well as macOS Sequoia 15. The flaw allows an attacker who has physical access to a locked device to read contact numbers displayed on the lock screen. This occurs because the system previously allowed certain options on the lock screen that inadvertently exposed contact information without requiring device unlock or user interaction. Apple resolved this issue by restricting the options available on locked devices, thereby preventing unauthorized access to contact data. The vulnerability affects multiple Apple platforms, including iOS 17.7, iPadOS 17.7, iOS 18, iPadOS 18, and macOS Sequoia 15, with patches incorporated in these versions. The CVSS 3.1 base score is 2.4, reflecting a low-severity rating due to the limited impact on confidentiality, no impact on integrity or availability, the requirement for physical access, and no need for user interaction or authentication. The vulnerability is categorized under CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor). There are no known exploits in the wild, and the issue was publicly disclosed in March 2025. This vulnerability highlights the importance of controlling information exposure on locked devices, especially for devices that may be lost or stolen.

The primary impact of CVE-2024-44179 is the unauthorized disclosure of contact numbers from the lock screen of affected Apple devices. While this does not compromise device integrity or availability, it can lead to privacy violations and potential social engineering or targeted phishing attacks using the exposed contact information. Organizations with employees using Apple devices may face risks of sensitive contact data leakage if devices are lost or stolen and not promptly updated. However, the requirement for physical access significantly limits the scope of exploitation, reducing the risk of remote attacks. The vulnerability could be exploited by insiders or attackers with temporary possession of a device, potentially facilitating further reconnaissance or targeted attacks. Overall, the impact is low but relevant in environments where device physical security is weak or where contact information confidentiality is critical.

To mitigate CVE-2024-44179, organizations and users should promptly update all affected Apple devices to iOS 17.7, iPadOS 17.7, iOS 18, iPadOS 18, or macOS Sequoia 15, where the vulnerability is fixed. Beyond patching, enforcing strict physical security controls to prevent unauthorized access to devices is crucial, including policies for device handling, storage, and transport. Enabling strong device passcodes and biometric protections can further reduce risk, although this vulnerability does not require device unlock. Organizations should consider disabling lock screen features that display sensitive information or restrict access to contact data on the lock screen via device management policies. Regular user training on the risks of physical device loss and the importance of timely updates will also help reduce exposure. Monitoring for lost or stolen devices and having rapid response procedures to remotely wipe or disable compromised devices can limit potential damage.