CVE-2025-24203

CVE Database · CVE-2025-24203

CVE-2025-24203

· MEDIUMModified

CVSS v3.1

5.0

EPSS

0.51%

Published

Mar 31, 2025

Modified

Apr 2, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to modify protected parts of the file system.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

Affected Products (4)

apple · ipad_os (up to 17.7.6)vulnerable

apple · macos (up to 13.7.5)vulnerable

apple · macos (up to 14.7.5)vulnerable

apple · macos (up to 15.4)vulnerable

References (12)

https://support.apple.com/en-us/122371

https://support.apple.com/en-us/122372

Vendor Advisory

https://support.apple.com/en-us/122373