VYPR
Medium severity5.5NVD Advisory· Published May 12, 2025· Updated Jun 17, 2026

CVE-2025-24220

CVE-2025-24220

Description

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.9. An app may be able to read a persistent device identifier.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Apple Inc./Ipados2 versions
    cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <18.4
    • (no CPE)range: pre-18.4, pre-17.7.9
  • cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
    Range: <18.4
  • Apple Inc./iOSllm-fuzzy
    Range: pre-18.4

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.