VDB
CISA-2025-24238
CISA-2025-24238
PUBLISHED
CVSS 9.8 CRITICAL
Reported by apple · Published March 31, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to gain elevated privileges.
Risk Scores
CVSS 3.1
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | tvOS | unspecified |
| Apple | iOS and iPadOS | unspecified |
| Apple | macOS | unspecified |
| Apple | macOS | unspecified |
| Apple | macOS | unspecified |
| Apple | macOS | *, *, unspecified |
| Apple | tvOS | unspecified, unspecified |
| Apple | iOS and iPadOS | unspecified, * |
Timeline
- Mar 31, 2025 CVE Published
- Feb 26, 2026 CVE Updated