File Parsing Vulnerability in Apple Products
CVE-2025-24163

9.8CRITICAL

Key Information:

Vendor: Apple
Status: Mac OS; Visionos; TV OS; iPad OS
Vendor: CVE Published:; 27 January 2025

Summary

A vulnerability exists in Apple's operating systems where improperly handled file parsing can cause unexpected application terminations. This issue has been mitigated in recent updates across various platforms, including iPadOS, macOS, and iOS. Users are encouraged to update their devices to the latest versions to protect against potential disruptions.

Affected Version(s)

iOS and iPadOS < 18.3

iPadOS < 17.7

macOS < 14.7

References

https://support.apple.com/en-us/122069

https://support.apple.com/en-us/122073

https://support.apple.com/en-us/122072

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 27, 2025
Vulnerability Reserved
Jan 17, 2025