CVE-2025-31222

HIGH

iPadOS < 18.5 - Privilege Escalation

Title source: llm

Description

A correctness issue was addressed with improved checks. This issue is fixed in iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.5, visionOS 2.5, watchOS 11.5. A user may be able to elevate privileges.

References (13)

Core 13

Core References

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122404

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122716

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122717

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122718

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122720

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122721

Release Notes, Vendor Advisory

https://support.apple.com/en-us/122722

Mailing List

http://seclists.org/fulldisclosure/2025/May/10

Mailing List

http://seclists.org/fulldisclosure/2025/May/12

Mailing List

http://seclists.org/fulldisclosure/2025/May/5

Mailing List

http://seclists.org/fulldisclosure/2025/May/7

Mailing List

http://seclists.org/fulldisclosure/2025/May/8

Mailing List

http://seclists.org/fulldisclosure/2025/May/9

Scores

CVSS v3 7.8

EPSS 0.0007

EPSS Percentile 20.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-269

Status published

Products (13)

Apple/iOS and iPadOS < 18.5

apple/ipados < 18.5

apple/iphone_os < 18.5

apple/macos < 13.7.6

Apple/macOS < 13.7.6

Apple/macOS < 14.7.6

Apple/macOS < 15.5

apple/tvos < 18.5

Apple/tvOS < 18.5

apple/visionos < 2.5

... and 3 more

Published May 12, 2025

Tracked Since Feb 18, 2026