CVE-2025-31214

CVE-2025-31214 is an Apple vulnerability affecting iOS 18.5 and iPadOS 18.5. The issue stems from improper state management and is fixed in the 18.5 releases. An attacker connected to a privileged network could intercept network traffic due to this flaw. The NVD description confirms the fix and s...

CVE-2025-31214

This issue was addressed through improved state management. This issue is fixed in iOS 18.5 and iPadOS 18.5. An attacker in a privileged network position may be able to intercept network traffic...

CVE-2025-31239

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Parsing a file may lead to an unexpected app termination...

CVE-2025-31242

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.3, macOS Sonoma 14.7.6, macOS Ventura 13.7.3, macOS Ventura 13.7.6, tvOS 18.5, visionOS 2.5, watchOS 11.5. An a...

CVE-2025-31215

The issue was addressed with improved checks. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. Processing maliciously crafted web content may lead to an unexpected process crash...

CVE-2025-31215

CVE-2025-31215 is a WebKitGTK/WebKit-related issue where processing malicious web content may cause an unexpected process crash. The connected advisories show concrete details across multiple distributions: Affected software: webkit2gtk/WebKitGTK (and its WebKit components) used in Linux distros ...

CVE-2025-24144

The CVE-2025-24144 information disclosure issue is fixed in Apple OS releases: macOS Sequoia 15.3, macOS Sonoma 14.7.6, visionOS 2.3, iPadOS 17.7.7, iPadOS 18.3, iOS 18.3, macOS Ventura 13.7.6, and watchOS 11.3. The root cause is described as removal of the vulnerable code, leading to potential l...

CVE-2025-24144

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.7, macOS Sequoia 15.3, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.3, visionOS 2.3, watchOS 11.3. An app may be able to leak sensitive kernel state...

CVE-2025-31235

CVE-2025-31235 is a local, memory‑corruption issue in Apple’s coreaudiod where a double‑free leads to an out‑of‑bounds or invalid dereference chain. The connected Google Project Zero write‑up explicates exploitation context for CVE-2025-31235 in coreaudiod alongside CVE-2024-54529, detailing how ...

CVE-2025-31235

A double free issue was addressed with improved memory management. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. An app may be able to cause unexpected system termination...

CVE-2025-31223

The issue was addressed with improved checks. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. Processing maliciously crafted web content may lead to memory corruption...

CVE-2025-24220

CVE-2025-24220 concerns a permissions issue in iOS/iPadOS that could allow an app to read a persistent device identifier. The connected sources consistently describe the vulnerable surface as a permissions-related flaw and confirm that Apple addressed it in iOS 18.4 and iPadOS 18.4. The CVE entry...

CVE-2025-24220

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4. An app may be able to read a persistent device identifier...

CVE-2025-24220

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.9. An app may be able to read a persistent device identifier...

CVE-2025-31219

The issue was addressed with improved memory handling. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.5, visionOS 2.5, watchOS 11.5. An attacker may be able to cause unexpected system termination or corrupt...

PT-2025-20750 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 18.4 iPadOS versions prior to 18.4 Description: An issue allows an attacker to potentially use Siri to enable Auto-Answer Calls. This could be exploited on a locked device. The estimated number of potentially affected...

PT-2025-20781 · Apple · Macos Ventura +4

Name of the Vulnerable Software and Affected Versions: iPadOS versions prior to 17.7.7 macOS Ventura versions prior to 13.7.6 macOS Sequoia versions prior to 15.5 macOS Sonoma versions prior to 14.7.6 Description: A double free issue was addressed with improved memory management. This issue may...

PT-2025-20795 · Apple · Facetime +2

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 18.5 iPadOS versions prior to 18.5 Description: The issue concerns a problem where muting the microphone during a FaceTime call may not result in audio being silenced. This was addressed through improved state management...

PT-2025-20767 · Apple · Ipados +7

Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 11.5 tvOS versions prior to 18.5 iPadOS versions prior to 17.7.7 and prior to 18.5 iOS versions prior to 18.5 macOS Sequoia versions prior to 15.5 visionOS versions prior to 2.5 Safari versions prior to 18.5...

Apple多款产品 安全漏洞

Apple iOS and others are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets.The vulnerabilities exist in a number of Apple products. A...