Denial-of-Service Vulnerability in Apple's iPadOS and macOS Products
CVE-2025-24086

5.5MEDIUM

Key Information:

Vendor

Apple
Status
Mac OS
Visionos
TV OS
iPad OS
Vendor
CVE Published:
27 January 2025

What is CVE-2025-24086?

A vulnerability has been identified in Apple's iPadOS and macOS platforms that could be exploited through improper memory handling when processing images. This issue may result in a denial-of-service condition, impacting user accessibility and functionality. Users are encouraged to update their devices to the latest versions to mitigate potential risks associated with this vulnerability.

Affected Version(s)

iOS and iPadOS < 18.3

iPadOS < 17.7

macOS < 14.7

References

https://support.apple.com/en-us/122069
https://support.apple.com/en-us/122073
https://support.apple.com/en-us/122072

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-24086 : Denial-of-Service Vulnerability in Apple's iPadOS and macOS Products