CVE-2025-24184

MEDIUM

iPadOS < 17.7.4 and < 18.3 - Denial of Service

Title source: llm

Description

The issue was addressed with improved memory handling. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. An app may be able to cause unexpected system termination.

References (6)

Core 6

Core References

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122066

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122067

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122068

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122071

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122072

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122073

Scores

CVSS v3 5.5

EPSS 0.0010

EPSS Percentile 26.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

Status published

Products (12)

Apple/iOS and iPadOS < 18.3

apple/ipados < 17.7.4

Apple/iPadOS < 17.7.4

apple/iphone_os < 18.3

apple/macos < 15.3

Apple/macOS < 15.3

apple/tvos < 18.3

Apple/tvOS < 18.3

apple/visionos < 2.3

Apple/visionOS < 2.3

... and 2 more

Published May 19, 2025

Tracked Since Feb 18, 2026