The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. Processing a maliciously crafted file may lead to arbitrary code execution.
References
Configurations
Configuration 1 (hide)
|
History
03 Nov 2025, 22:18
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
03 Nov 2025, 20:17
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
04 Apr 2025, 17:13
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Apple tvos
Apple iphone Os Apple ipados Apple visionos Apple Apple macos |
|
| CPE | cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* |
|
| Summary |
|
|
| References | () https://support.apple.com/en-us/122371 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/122372 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/122373 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/122374 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/122375 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/122377 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/122378 - Vendor Advisory |
01 Apr 2025, 05:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-94 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
31 Mar 2025, 23:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-03-31 23:15
Updated : 2025-11-03 22:18
NVD link : CVE-2025-24243
Mitre link : CVE-2025-24243
CVE.ORG link : CVE-2025-24243
JSON object : View
Products Affected
apple
- tvos
- ipados
- macos
- iphone_os
- visionos
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')