CVE-2025-24085

CVSS 10 CRITICALEPSS 18.7%● KEVCWE-416

In short

A memory management flaw in Apple devices allows a malicious app to gain unauthorized access to system privileges. This critical vulnerability has been actively exploited in the wild and affects iPhones, iPads, Macs, and other Apple devices.

Technical detail

A use-after-free vulnerability (CWE-416) in Apple's memory management enables privilege escalation when a malicious application is installed and executed. The vulnerability affects iOS versions prior to 17.2 and requires local code execution; Apple confirmed active exploitation in the wild and patched the issue across iOS 18.3, macOS variants (Sequoia 15.3, Sonoma 14.7.5, Ventura 13.7.5), iPadOS 18.3 and 17.7.6, tvOS 18.3, visionOS 2.3, and watchOS 11.3.

Summary generated and translated by AI from the official description.

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.6, macOS Sequoia 15.3, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.3, visionOS 2.3, watchOS 11.3. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected products

Apple · iOS and iPadOS Apple · iPadOS Apple · macOS Apple · tvOS Apple · visionOS Apple · watchOS

public PoCs found — 2

githubgithub.com/JGoyd/Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201★ 39 exploitdbwww.exploit-db.com/exploits/52316unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References