Medium severity5.5NVD Advisory· Published May 12, 2025· Updated Jun 17, 2026
CVE-2025-24220
CVE-2025-24220
Description
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.9. An app may be able to read a persistent device identifier.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <18.4
- (no CPE)range: pre-18.4, pre-17.7.9
- Range: pre-18.4
Patches
Vulnerability mechanics
References
4- support.apple.com/en-us/122371nvdRelease NotesVendor Advisory
- seclists.org/fulldisclosure/2025/Jul/31nvd
- seclists.org/fulldisclosure/2025/May/6nvd
- support.apple.com/en-us/124148nvd
News mentions
0No linked articles in our index yet.