PT-2025-5321 · Apple · Visionos+6

Published

2025-01-27

Updated

2025-03-03

CVE-2025-24154

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS Ventura versions prior to 13.7.3 macOS Sonoma versions prior to 14.7.3 visionOS versions prior to 2.3 iOS versions prior to 18.3 iPadOS versions prior to 18.3 macOS Sequoia versions prior to 15.3

Description The issue is related to an out-of-bounds write problem that has been addressed with improved input validation. This could allow an attacker to cause unexpected system termination or corrupt kernel memory. The problem is also associated with a buffer overflow in memory when reading beyond boundaries, potentially leading to a denial of service.

Recommendations For macOS Ventura versions prior to 13.7.3, update to version 13.7.3 or later. For macOS Sonoma versions prior to 14.7.3, update to version 14.7.3 or later. For visionOS versions prior to 2.3, update to version 2.3 or later. For iOS versions prior to 18.3, update to version 18.3 or later. For iPadOS versions prior to 18.3, update to version 18.3 or later. For macOS Sequoia versions prior to 15.3, update to version 15.3 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-757

Related Identifiers

BDU:2025-01625

CVE-2025-24154

Affected Products

Apple Macos

Ios

Ipados

Macos Sequoia

Macos Sonoma

Macos Ventura

Visionos

PT-2025-5321 · Apple · Visionos+6

CVE-2025-24154

Weakness Enumeration

Related Identifiers

Affected Products

References · 17