Medium severity5.5NVD Advisory· Published Mar 31, 2025· Updated Apr 2, 2026
CVE-2025-24205
CVE-2025-24205
Description
An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to access user-sensitive data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <17.7.6
- (no CPE)range: <18.4
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*range: >=13.0,<13.7.5
- (no CPE)range: <15.4 or <14.7.5 or <13.7.5
- Range: <18.4
Patches
Vulnerability mechanics
References
10- support.apple.com/en-us/122371nvdVendor Advisory
- support.apple.com/en-us/122372nvdVendor Advisory
- support.apple.com/en-us/122373nvdVendor Advisory
- support.apple.com/en-us/122374nvdVendor Advisory
- support.apple.com/en-us/122375nvdVendor Advisory
- seclists.org/fulldisclosure/2025/Apr/10nvd
- seclists.org/fulldisclosure/2025/Apr/4nvd
- seclists.org/fulldisclosure/2025/Apr/5nvd
- seclists.org/fulldisclosure/2025/Apr/8nvd
- seclists.org/fulldisclosure/2025/Apr/9nvd
News mentions
0No linked articles in our index yet.