๐Ÿ” CVE Alert

CVE-2025-24085

CRITICAL 10.0 โš ๏ธ CISA KEV
CVSS Score
10.0
EPSS Score
0.0%
EPSS Percentile
0th

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.6, macOS Sequoia 15.3, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.3, visionOS 2.3, watchOS 11.3. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2.

Vendor apple
Product ios and ipados
Ecosystems
Industries
Technology
Published Jan 27, 2025
Last Updated Apr 2, 2026
โš ๏ธ Actively Exploited โ€” Act Now

Get instant alerts for apple ios and ipados

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2025-24085.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Apple / iOS and iPadOS
0 < 18.3
Apple / iPadOS
0 < 17.7.6
Apple / macOS
0 < 13.7.5 0 < 14.7.5 0 < 15.3
Apple / tvOS
0 < 18.3
Apple / visionOS
0 < 2.3
Apple / watchOS
0 < 11.3

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
support.apple.com: https://support.apple.com/en-us/122066 support.apple.com: https://support.apple.com/en-us/122068 support.apple.com: https://support.apple.com/en-us/122071 support.apple.com: https://support.apple.com/en-us/122072 support.apple.com: https://support.apple.com/en-us/122073 support.apple.com: https://support.apple.com/en-us/122372 support.apple.com: https://support.apple.com/en-us/122374 support.apple.com: https://support.apple.com/en-us/122375 cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24085 seclists.org: http://seclists.org/fulldisclosure/2025/Oct/30 seclists.org: http://seclists.org/fulldisclosure/2025/Oct/31 seclists.org: http://seclists.org/fulldisclosure/2025/Oct/23 seclists.org: http://seclists.org/fulldisclosure/2025/Oct/1 seclists.org: http://seclists.org/fulldisclosure/2025/Jun/19 seclists.org: http://seclists.org/fulldisclosure/2025/Apr/10 seclists.org: http://seclists.org/fulldisclosure/2025/Apr/9 seclists.org: http://seclists.org/fulldisclosure/2025/Apr/5 seclists.org: http://seclists.org/fulldisclosure/2025/Jan/19 seclists.org: http://seclists.org/fulldisclosure/2025/Jan/15 seclists.org: http://seclists.org/fulldisclosure/2025/Jan/13 seclists.org: http://seclists.org/fulldisclosure/2025/Jan/12 github.com: https://github.com/JGoyd/Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201 github.com: https://github.com/cisagov/vulnrichment/issues/194