CVE-2025-24137HIGH 8.0EPSS p55.3%
CVE-2025-24137CVE-2025-24137
Description
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, tvOS 18.3, visionOS 2.3. An attacker on the local network may corrupt process memory.
Scoring
| CVSS 3.1 | 8.0 (HIGH) |
| Vector | CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
| EPSS | 0.91% probability of exploitation · percentile 55.3% · 2026-06-19T12:03:05Z |
| Published | 2025-01-27 |
| Last modified | 2026-04-02 |
Underlying weaknesses· 1
References
- https://support.apple.com/en-us/122066
- https://support.apple.com/en-us/122067
- https://support.apple.com/en-us/122068
- https://support.apple.com/en-us/122069
- https://support.apple.com/en-us/122072
- https://support.apple.com/en-us/122073
- http://seclists.org/fulldisclosure/2025/Jan/13
- http://seclists.org/fulldisclosure/2025/Jan/14
1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Weakness | Access of Resource Using Incompatible Type ('Type Confusion')cwe-843 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.