VDB
CISA-2025-30471
CISA-2025-30471
PUBLISHED
CVSS 7.5 HIGH
Reported by apple · Published March 31, 2025
A validation issue was addressed with improved logic. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A remote user may be able to cause a denial-of-service.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | tvOS | unspecified |
| Apple | iOS and iPadOS | unspecified |
| Apple | iPadOS | unspecified |
| Apple | macOS | unspecified |
| Apple | visionOS | unspecified |
| Apple | macOS | unspecified |
| Apple | macOS | unspecified |
| Apple | iPadOS | unspecified, unspecified |
| Apple | tvOS | *, unspecified |
| Apple | visionOS | unspecified, unspecified |
| Apple | iOS and iPadOS | unspecified, unspecified |
| Apple | macOS | unspecified, unspecified, unspecified |
Timeline
- Mar 31, 2025 CVE Published
- Nov 3, 2025 CVE Updated
References
- http://seclists.org/fulldisclosure/2025/Apr/13 url
- http://seclists.org/fulldisclosure/2025/Apr/10 url
- http://seclists.org/fulldisclosure/2025/Apr/9 url
- http://seclists.org/fulldisclosure/2025/Apr/8 url
- http://seclists.org/fulldisclosure/2025/Apr/5 url
- http://seclists.org/fulldisclosure/2025/Apr/4 url
- http://seclists.org/fulldisclosure/2025/Apr/12 url
- http://seclists.org/fulldisclosure/2025/Apr/11 url