CVE-2025-24148

Description

This issue was addressed with improved handling of executable types. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A malicious JAR file may bypass Gatekeeper checks.

Reserved 2025-01-17 | Published 2025-03-31 | Updated 2025-04-02 | Assigner apple

Problem types

A malicious JAR file may bypass Gatekeeper checks

Product status

Any version before 15.4
affected

Any version before 14.7
affected

Any version before 13.7
affected

References

support.apple.com/en-us/122373

support.apple.com/en-us/122374

support.apple.com/en-us/122375

cve.org (CVE-2025-24148)

nvd.nist.gov (CVE-2025-24148)

Download JSON