CVE-2025-24113

Name of the Vulnerable Software and Affected Versions macOS versions prior to 15.3 Safari versions prior to 18.3 iOS versions prior to 18.3 iPadOS versions prior to 18.3 visionOS versions prior to 2.3

Description The issue is related to an incorrect restriction of visualizable layers in the user interface component of the affected operating systems and browser. Visiting a malicious website may lead to user interface spoofing, potentially allowing a remote attacker to gain unauthorized access to confidential data.

Recommendations For macOS versions prior to 15.3, update to macOS Sequoia 15.3. For Safari versions prior to 18.3, update to Safari 18.3. For iOS versions prior to 18.3, update to iOS 18.3. For iPadOS versions prior to 18.3, update to iPadOS 18.3. For visionOS versions prior to 2.3, update to visionOS 2.3. As a temporary workaround, consider avoiding visits to untrusted websites to minimize the risk of exploitation.