PT-2025-5314 · Apple · Ipados+3
Kirin
·
Published
2025-01-27
·
Updated
2025-01-30
·
CVE-2025-24145
CVSS v3.1
3.3
Low
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
macOS Sequoia versions prior to 15.3
iOS versions prior to 18.3
iPadOS versions prior to 18.3
Description
A privacy issue was addressed with improved private data redaction for log entries. An app may be able to view a contact's phone number in system logs. This issue is related to the disclosure of information through system log files.
Recommendations
For macOS Sequoia versions prior to 15.3, update to macOS Sequoia 15.3 to resolve the issue.
For iOS versions prior to 18.3, update to iOS 18.3 to resolve the issue.
For iPadOS versions prior to 18.3, update to iPadOS 18.3 to resolve the issue.
As a temporary workaround, consider restricting access to system logs to minimize the risk of exploitation.
Fix
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos
Ios
Ipados
Macos Sequoia