Medium severity5.4NVD Advisory· Published Apr 29, 2025· Updated Apr 2, 2026
CVE-2025-24271
CVE-2025-24271
Description
An access issue was addressed with improved access restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. An unauthenticated user on the same network as a signed-in Mac could send it AirPlay commands without pairing.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*range: <13.7.5
- (no CPE)range: <15.4
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*range: <18.4
- (no CPE)range: <18.4
- Range: <18.4
Patches
Vulnerability mechanics
References
7- support.apple.com/en-us/122371nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122372nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122373nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122374nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122375nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122377nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122378nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.