We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-24206



Description

An authentication issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An attacker on the local network may be able to bypass authentication policy.

Reserved 2025-01-17 | Published 2025-04-29 | Updated 2025-05-01 | Assigner apple

Problem types

An attacker on the local network may be able to bypass authentication policy

Product status

Any version before 18.4
affected

Any version before 18.4
affected

Any version before 17.7
affected

Any version before 15.4
affected

Any version before 2.4
affected

Any version before 14.7
affected

Any version before 13.7
affected

References

support.apple.com/en-us/122377

support.apple.com/en-us/122371

support.apple.com/en-us/122372

support.apple.com/en-us/122373

support.apple.com/en-us/122378

support.apple.com/en-us/122374

support.apple.com/en-us/122375

cve.org (CVE-2025-24206)

nvd.nist.gov (CVE-2025-24206)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-24206

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.