Main Vulnerability Database Vulnerabilities #VU121604

Protection mechanism failure in Apple iOS and iPadOS - CVE-2024-54556

Published: January 16, 2026

Vulnerability identifier: #VU121604

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2024-54556

CWE-ID: CWE-693

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Apple Inc.

Affected software:
Apple iOS
iPadOS

Detailed vulnerability description

The vulnerability allows an attacker to view restricted content on the locked screen.

The vulnerability exists due to insufficient implementation of security measures in WidgetKit. An attacker with physical access to the system can view restricted content from the lock screen.

How to mitigate CVE-2024-54556

Install updates from vendor's website.

Sources

https://support.apple.com/en-us/121563

Protection mechanism failure in Apple iOS and iPadOS - CVE-2024-54556

Detailed vulnerability description

How to mitigate CVE-2024-54556

Sources

Please verify you're human