Local Network Vulnerability in Apple macOS, iPadOS, and iOS Products
CVE-2025-24251

6.5MEDIUM

Key Information:

Vendor
Apple
Status
Watch OS
TV OS
iOS And iPad OS
iPad OS
Vendor
CVE Published:
29 April 2025

Summary

A vulnerability has been identified that allows an attacker on the local network to potentially cause unexpected app terminations in various Apple devices. This issue arises due to inadequate checks in the software. Apple has released updates to address this vulnerability with significant improvements in the affected operating systems, including macOS Sequoia, iPadOS, and iOS. Users are encouraged to update their devices to ensure protection against this and other potential threats.

Affected Version(s)

iOS and iPadOS < 18.4

iPadOS < 17.7

macOS < 15.4

References

https://support.apple.com/en-us/122376
https://support.apple.com/en-us/122377
https://support.apple.com/en-us/122371

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

.
CVE-2025-24251 : Local Network Vulnerability in Apple macOS, iPadOS, and iOS Products | SecurityVulnerability.io