CVE-2025-24224

HIGH

iPadOS < 17.7.9 - Denial of Service

Title source: llm
STIX 2.1

Description

The issue was addressed with improved checks. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.9, macOS Sequoia 15.5, macOS Ventura 13.7.7, tvOS 18.5, visionOS 2.5, watchOS 11.5. A remote attacker may be able to cause unexpected system termination.

References (9)

Core 9
Core References
Release Notes, Vendor Advisory
https://support.apple.com/en-us/122404
Release Notes, Vendor Advisory
https://support.apple.com/en-us/122716
Release Notes, Vendor Advisory
https://support.apple.com/en-us/122720
Release Notes, Vendor Advisory
https://support.apple.com/en-us/122721
Release Notes, Vendor Advisory
https://support.apple.com/en-us/122722
Release Notes, Vendor Advisory
https://support.apple.com/en-us/124148
Release Notes, Vendor Advisory
https://support.apple.com/en-us/124151

Scores

CVSS v3 7.5
EPSS 0.0111
EPSS Percentile 61.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-754
Status published
Products (13)
Apple/iOS and iPadOS < 18.5
apple/ipados < 17.7.9
Apple/iPadOS < 17.7.9
apple/iphone_os < 18.5
apple/macos < 13.7.7
Apple/macOS < 13.7.7
Apple/macOS < 15.5
apple/tvos < 18.5
Apple/tvOS < 18.5
apple/visionos < 2.5
... and 3 more
Published Jul 30, 2025
Tracked Since Feb 18, 2026