Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-7h23-57pg-3hwc

Опубликовано: 28 янв. 2025
Источник: github
Github: Не прошло ревью
CVSS3: 7.8

Описание

A use after free issue was addressed with improved memory management. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2.

A use after free issue was addressed with improved memory management. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2.

Ссылки

EPSS

Процентиль: 96%
0.28136
Средний

7.8 High

CVSS3

CVE ID

CVE-2025-24085

Дефекты

CWE-276
CWE-416

Связанные уязвимости

nvd логотип

CVE-2025-24085

CVSS3: 10
nvd
около 1 года назад

A use after free issue was addressed with improved memory management. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2.

fstec логотип

BDU:2025-00858

CVSS3: 8.6
fstec
около 1 года назад

Уязвимость компонента CoreMedia операционных систем visionOS, iOS, iPadOS, macOS, watchOS, tvOS, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 96%
0.28136
Средний

7.8 High

CVSS3

CVE ID

CVE-2025-24085

Дефекты

CWE-276
CWE-416