PT-2025-20744 · Apple · Ipados+1

Wojciech Regula

Published

2025-05-12

Updated

2025-05-27

CVE-2025-24220

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions iPadOS versions prior to 17.7.7 iOS versions prior to 18.4 iPadOS versions prior to 18.4

Description A permissions issue was addressed with additional restrictions. An app may be able to read a persistent device identifier.

Recommendations For iPadOS versions prior to 17.7.7, update to iPadOS 17.7.7 to resolve the issue. For iOS versions prior to 18.4, update to iOS 18.4 to resolve the issue. For iPadOS versions prior to 18.4, update to iPadOS 18.4 to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2025-24220

Affected Products

Ios

Ipados

PT-2025-20744 · Apple · Ipados+1

CVE-2025-24220

Weakness Enumeration

Related Identifiers

Affected Products

References · 10