CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2025-24144: An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.6,...
5.5
CVSS
Description
An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.6, visionOS 2.3, iPadOS 17.7.7, watchOS 11.3, macOS Ventura 13.7.6, iOS 18.3 and iPadOS 18.3, tvOS 18.3. An app may be able to leak sensitive kernel state.
Classification
CVE ID: CVE-2025-24144
CVSS Base Severity: MEDIUM
CVSS Base Score: 5.5
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Problem Types
An app may be able to leak sensitive kernel stateAffected Products
Vendor: Apple
Product: visionOS, tvOS, macOS, iPadOS, watchOS, iOS and iPadOS
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.01% (probability of being exploited)
EPSS Percentile: 0.97% (scored less or equal to compared to others)
EPSS Date: 2025-06-10 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-24144https://support.apple.com/en-us/122073
https://support.apple.com/en-us/122072
https://support.apple.com/en-us/122068
https://support.apple.com/en-us/122405
https://support.apple.com/en-us/122717
https://support.apple.com/en-us/122718
https://support.apple.com/en-us/122071
https://support.apple.com/en-us/122066