Medium severity6.5NVD Advisory· Published Apr 30, 2025· Updated Apr 2, 2026

CVE-2025-24132

Description

The issue was addressed with improved memory handling. This issue is fixed in AirPlay audio SDK 2.7.1 and AirPlay video SDK 3.6.0.126. An attacker on the local network may cause an unexpected app termination.

Affected products

Apple Inc./Airplay Audio Software Development Kit
cpe:2.3:a:apple:airplay_audio_software_development_kit:*:*:*:*:*:*:*:*
Range: <2.7.1
Apple Inc./Airplay Video Software Development Kit
cpe:2.3:a:apple:airplay_video_software_development_kit:*:*:*:*:*:*:*:*
Range: <3.6.0.126
Apple Inc./Carplay Communication Plug In
cpe:2.3:a:apple:carplay_communication_plug-in:*:*:*:*:*:*:*:*
Range: <r18.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.apple.com/en-us/122403nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.423
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000