Memory Corruption Vulnerability in Multiple Apple Products
CVE-2025-24223

8HIGH

Key Information:

Vendor

Apple

Vendor
CVE Published:
12 May 2025

What is CVE-2025-24223?

A significant memory corruption vulnerability has been identified in several Apple operating systems. This flaw may be exploited through the processing of maliciously crafted web content, potentially leading to unexpected behaviors or system instability. Apple has addressed this issue in the latest updates for watchOS, tvOS, iOS, iPadOS, macOS, visionOS, and Safari, ensuring enhanced memory handling to protect user data and maintain system integrity.

Affected Version(s)

iOS and iPadOS < 18.5

macOS < 15.5

Safari < 18.5

References

CVSS V3.1

Score:
8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.