CVE-2025-24252

Name of the Vulnerable Software and Affected Versions Apple macOS versions prior to 15.4 Apple tvOS versions prior to 18.4 Apple macOS Ventura versions prior to 13.7.5 Apple iPadOS versions prior to 17.7.6 Apple macOS Sonoma versions prior to 14.7.5 Apple iOS versions prior to 18.4 Apple iPadOS versions prior to 18.4 Apple visionOS versions prior to 2.4

Description A use-after-free issue exists due to improper memory management. This issue allows a remote attacker to potentially corrupt process memory. The vulnerability is actively exploited and enables zero-click remote code execution via the AirPlay protocol. An attacker on the local network may be able to compromise devices. The vulnerability affects multiple Apple operating systems, including macOS, tvOS, iPadOS, iOS, and visionOS. Exploitation of this issue can lead to malware installation without user interaction and has the potential to spread across networks. A demonstration of the exploit targeting the Apple Music App is available.

Recommendations Update to macOS version 15.4 or later. Update to tvOS version 18.4 or later. Update to macOS Ventura version 13.7.5 or later. Update to iPadOS version 17.7.6 or later. Update to macOS Sonoma version 14.7.5 or later. Update to iOS version 18.4 or later. Update to iPadOS version 18.4 or later. Update to visionOS version 2.4 or later.