Vulnerability in macOS Applications Affecting Apple Products
CVE-2025-24120

7.5HIGH

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 27 January 2025

What is CVE-2025-24120?

This vulnerability relates to improper management of object lifetimes in macOS, potentially allowing an attacker to exploit the flaw and induce unexpected termination of applications. The issue has been remediated in the latest versions of macOS Ventura, Sequoia, and Sonoma, ensuring enhanced stability and security for users. It is crucial for users to update their systems to mitigate any risks associated with this vulnerability.

Affected Version(s)

macOS < 14.7

macOS < 15.3

macOS < 13.7

References

https://support.apple.com/en-us/122069

https://support.apple.com/en-us/122068

https://support.apple.com/en-us/122070

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 27, 2025
Vulnerability Reserved
Jan 17, 2025

JSON