cd ../exploit-db
root@mhfh:~#cat /var/db/exploits/CVE-2024-44308.json
exploits/CVE-2024-44308.md
CVE-2024-44308iOSRCECritical
JavaScriptCore UXSS chain
- affected
- ≤18.1
- disclosed
- 2024-11-19
- discovered
- 2024-10-30
- patched
- 2024-11-19 (iOS 18.1.1)
- author
- Clément Lecigne, TAG
- platform
- iOS
## description
Processing maliciously crafted web content may lead to arbitrary code execution. Apple confirmed in-the-wild exploitation on Intel Macs; the same primitive applies on iOS Safari.
## impact
UXSS + RCE inside Safari. Often paired with a kernel LPE for full device compromise.
## mitigation
Update to iOS 18.1.1 / 17.7.2.
## proof of concept
// UXSS primitive sketch const v = new DataView(new ArrayBuffer(8)); v.setFloat64(0, 1.1); // confused load via JIT type speculation %OptimizeFunctionOnNextCall(leak); leak(v);