PT-2025-22012 · Apple+5 · Macos Sequoia+12

Published

2025-01-27

·

Updated

2025-11-25

·

CVE-2025-24189

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions: Safari versions prior to 18.3 visionOS versions prior to 2.3 iOS versions prior to 18.3 iPadOS versions prior to 18.3 macOS Sequoia versions prior to 15.3 watchOS versions prior to 11.3 tvOS versions prior to 18.3
Description: Processing maliciously crafted web content may lead to memory corruption. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.
Recommendations: For Safari versions prior to 18.3, update to Safari 18.3. For visionOS versions prior to 2.3, update to visionOS 2.3. For iOS versions prior to 18.3, update to iOS 18.3. For iPadOS versions prior to 18.3, update to iPadOS 18.3. For macOS Sequoia versions prior to 15.3, update to macOS Sequoia 15.3. For watchOS versions prior to 11.3, update to watchOS 11.3. For tvOS versions prior to 18.3, update to tvOS 18.3.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CESA-2025_3974
CVE-2025-24189
DSA-5885-1
MGASA-2025-0313
RHSA-2025:3713
RHSA-2025:3755
RHSA-2025:3756
RHSA-2025:3974
RHSA-2025:4445
RHSA-2025:8064
RHSA-2025:8065
RHSA-2025:8066
RHSA-2025:8194
RHSA-2025_3713
RHSA-2025_3974
SUSE-SU-2025:02765-1
SUSE-SU-2025:02766-1
SUSE-SU-2025:02777-1
SUSE-SU-2025:02973-1
SUSE-SU-2025_02765-1
SUSE-SU-2025_02766-1
SUSE-SU-2025_02777-1
SUSE-SU-2025_02973-1

Affected Products

Astra Linux
Centos
Debian
Apple Macos
Red Hat
Safari
Suse
Ios
Ipados
Macos Sequoia
Tvos
Visionos
Watchos