High severity7.7NVD Advisory· Published Apr 29, 2025· Updated Apr 2, 2026
CVE-2025-24206
CVE-2025-24206
Description
An authentication issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. An attacker on the local network may be able to bypass authentication policy.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <17.7.6
- (no CPE)range: <18.4, <17.7.6
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*range: <13.7.5
- (no CPE)range: <15.4, <14.7.5, <13.7.5
- Range: <18.4
Patches
Vulnerability mechanics
References
7- support.apple.com/en-us/122371nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122372nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122373nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122374nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122375nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122377nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122378nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.