CVE-2025-24144 | THREATINT

Description

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.7, macOS Sequoia 15.3, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.3, visionOS 2.3, watchOS 11.3. An app may be able to leak sensitive kernel state.

PUBLISHED Reserved 2025-01-17 | Published 2025-05-12 | Updated 2026-04-02 | Assigner apple

Problem types

An app may be able to leak sensitive kernel state

Product status

Any version before 18.3

affected

Any version before 17.7.7

affected

Any version before 13.7.6

affected

Any version before 14.7.6

affected

Any version before 15.3

affected

Any version before 18.3

affected

Any version before 2.3

affected

Any version before 11.3

affected

References

seclists.org/fulldisclosure/2025/May/9

seclists.org/fulldisclosure/2025/May/8

seclists.org/fulldisclosure/2025/May/6

support.apple.com/en-us/122066

support.apple.com/en-us/122068

support.apple.com/en-us/122071

support.apple.com/en-us/122072

support.apple.com/en-us/122073

support.apple.com/en-us/122405

support.apple.com/en-us/122717

support.apple.com/en-us/122718

cve.org (CVE-2025-24144)

nvd.nist.gov (CVE-2025-24144)

Download JSON

help @ threatint.eu