CVE-2025-31235

Name of the Vulnerable Software and Affected Versions macOS versions prior to 13.7.6 macOS Sequoia versions prior to 15.5 macOS Sonoma versions prior to 14.7.6 iPadOS versions prior to 17.7.7

Description The issue involves a double free condition addressed through improved memory management. This could allow an application to cause unexpected system termination. The issue resides within the coreaudiod component of the CoreAudio framework. A proof-of-concept (PoC) has been released demonstrating how the issue can be exploited. The vulnerability could potentially allow an attacker to execute arbitrary code with elevated privileges, leading to a full system compromise.

Recommendations Update macOS to version 13.7.6 or later. Update macOS Sequoia to version 15.5 or later. Update macOS Sonoma to version 14.7.6 or later. Update iPadOS to version 17.7.7 or later.