CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2025-24149: An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3,...
Description
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to disclosure of user information.
Classification
CVE ID: CVE-2025-24149
Affected Products
Vendor: Apple
Product: macOS
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 15.5% (scored less or equal to compared to others)
EPSS Date: 2025-02-25 (when was this score calculated)
References
https://support.apple.com/en-us/122069https://support.apple.com/en-us/122073
https://support.apple.com/en-us/122072
https://support.apple.com/en-us/122068
https://support.apple.com/en-us/122067
https://support.apple.com/en-us/122071
https://support.apple.com/en-us/122070
https://support.apple.com/en-us/122066