High severity7.8NVD Advisory· Published May 12, 2025· Updated Apr 2, 2026
CVE-2025-24274
CVE-2025-24274
Description
An input validation issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6. A malicious app may be able to gain root privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*range: <13.7.6
- (no CPE)range: <15.5, <14.7.6, <13.7.6
Patches
Vulnerability mechanics
References
6- support.apple.com/en-us/122716nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122717nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122718nvdRelease NotesVendor Advisory
- seclists.org/fulldisclosure/2025/May/7nvd
- seclists.org/fulldisclosure/2025/May/8nvd
- seclists.org/fulldisclosure/2025/May/9nvd
News mentions
0No linked articles in our index yet.