CVE-2025-24118 – This is a memory corruption vulnerability in Ap... (How to Fix)

Q: What is the severity of CVE-2025-24118?

CVE-2025-24118 has a CVSS score of 7.1 (HIGH). This is a memory corruption vulnerability in Apple operating systems that allows malicious applications to cause system crashes or write to kernel memory. It affects iPadOS, macOS Sequoia, and macOS Sonoma users who haven't applied security updates. The vulnerability could lead to system instability or potential privilege escalation.

📋 TL;DR

This is a memory corruption vulnerability in Apple operating systems that allows malicious applications to cause system crashes or write to kernel memory. It affects iPadOS, macOS Sequoia, and macOS Sonoma users who haven't applied security updates. The vulnerability could lead to system instability or potential privilege escalation.

💻 Affected Systems

Products:

iPadOS
macOS Sequoia
macOS Sonoma

Versions: Versions prior to iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3

Operating Systems: iPadOS, macOS

Default Config Vulnerable: ⚠️ Yes

Notes: All standard configurations are vulnerable. Requires application execution privileges.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel-level code execution leading to full system compromise, data theft, or persistent malware installation

🟠

Likely Case

Application-induced system crashes (kernel panics) causing service disruption and potential data loss

🟢

If Mitigated

Limited to denial of service if proper application sandboxing and security controls are enforced

🌐 Internet-Facing: LOW - Requires local application execution, not directly exploitable over network

🏢 Internal Only: MEDIUM - Malicious or compromised applications could exploit this from within the organization

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires malicious application installation and execution. No public exploit code available at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3

Vendor Advisory: https://support.apple.com/en-us/122067

Restart Required: Yes

Instructions:

1. Open System Settings > General > Software Update. 2. Install available updates. 3. Restart device when prompted.

🔧 Temporary Workarounds

Application Restriction

all

Restrict installation of untrusted applications through MDM or parental controls

🧯 If You Can't Patch

Implement strict application allowlisting policies
Isolate vulnerable systems from critical networks and data

🔍 How to Verify

Check if Vulnerable:

Check current OS version against vulnerable versions listed above

Check Version:

sw_vers (macOS) or Settings > General > About (iPadOS)

Verify Fix Applied:

Verify OS version matches or exceeds patched versions: iPadOS 17.7.4+, macOS Sequoia 15.3+, macOS Sonoma 14.7.3+

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs
Unexpected application crashes with memory access errors
Console logs showing memory corruption warnings

Network Indicators:

None - local exploitation only

SIEM Query:

source="apple_system_logs" AND ("kernel panic" OR "memory corruption" OR "CVE-2025-24118")

📊 Metadata

CVE ID: CVE-2025-24118

CVSS v3 Score: 7.1 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

CWE: CWE-787

EPSS Score: 6.79% exploit probability (91.1th percentile)

Published: January 27, 2025

Last Updated: November 3, 2025

🔗 References

https://support.apple.com/en-us/122067 Release Notes,Vendor Advisory
https://support.apple.com/en-us/122068 Release Notes,Vendor Advisory
https://support.apple.com/en-us/122069 Release Notes,Vendor Advisory
http://seclists.org/fulldisclosure/2025/Jan/14
http://seclists.org/fulldisclosure/2025/Jan/15
http://seclists.org/fulldisclosure/2025/Jan/16

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-24118, you might also want to check these: