PT-2025-13905 · Apple+9 · Ios+15

Published

2025-03-31

·

Updated

2025-11-25

·

CVE-2025-24216

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions visionOS versions prior to 2.4 tvOS versions prior to 18.4 iPadOS versions prior to 17.7.6 iPadOS versions prior to 18.4 iOS versions prior to 18.4 macOS Sequoia versions prior to 15.4 Safari versions prior to 18.4
Description The issue was addressed with improved memory handling. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Recommendations For visionOS versions prior to 2.4, update to visionOS 2.4. For tvOS versions prior to 18.4, update to tvOS 18.4. For iPadOS versions prior to 17.7.6, update to iPadOS 17.7.6 or later. For iPadOS versions prior to 18.4, update to iPadOS 18.4. For iOS versions prior to 18.4, update to iOS 18.4. For macOS Sequoia versions prior to 15.4, update to macOS Sequoia 15.4. For Safari versions prior to 18.4, update to Safari 18.4.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-508

Related Identifiers

ALSA-2025:3713
ALSA-2025:3974
ALSA-2025:7387
BDU:2025-04772
CESA-2025_3974
CVE-2025-24216
DLA-4218-1
DSA-5899-1
INFSA-2025_3713
INFSA-2025_3974
INFSA-2025_7387
MGASA-2025-0313
OPENSUSE-SU-2025_1331-1
OPENSUSE-SU-2025_1336-1
RHSA-2025:10364
RHSA-2025:3713
RHSA-2025:3755
RHSA-2025:3756
RHSA-2025:3974
RHSA-2025:4445
RHSA-2025:7387
RHSA-2025:8064
RHSA-2025:8065
RHSA-2025:8066
RHSA-2025:8194
RHSA-2025_3713
RHSA-2025_3974
RHSA-2025_7387
SUSE-SU-2025:1265-1
SUSE-SU-2025:1325-1
SUSE-SU-2025:1331-1
SUSE-SU-2025:1336-1
SUSE-SU-2025_1265-1
SUSE-SU-2025_1325-1
SUSE-SU-2025_1331-1
SUSE-SU-2025_1336-1
USN-7436-1

Affected Products

Almalinux
Astra Linux
Centos
Debian
Linuxmint
Apple Macos
Red Hat
Rocky Linux
Safari
Suse
Ubuntu
Ios
Ipados
Macos Sequoia
Tvos
Visionos