CVE-2025-24154 – This CVE describes an out-of-bounds write vulne... (How to Fix)

Q: What is the severity of CVE-2025-24154?

CVE-2025-24154 has a CVSS score of 9.1 (CRITICAL). This CVE describes an out-of-bounds write vulnerability in Apple operating systems that could allow an attacker to cause system crashes or corrupt kernel memory. The vulnerability affects multiple Apple platforms including macOS, iOS, iPadOS, and visionOS. Attackers could potentially exploit this to achieve kernel-level access or denial of service.

📋 TL;DR

This CVE describes an out-of-bounds write vulnerability in Apple operating systems that could allow an attacker to cause system crashes or corrupt kernel memory. The vulnerability affects multiple Apple platforms including macOS, iOS, iPadOS, and visionOS. Attackers could potentially exploit this to achieve kernel-level access or denial of service.

💻 Affected Systems

Products:

macOS
iOS
iPadOS
visionOS

Versions: Versions before macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3, iPadOS 18.3, macOS Sequoia 15.3

Operating Systems: macOS, iOS, iPadOS, visionOS

Default Config Vulnerable: ⚠️ Yes

Notes: All default configurations of affected Apple operating systems are vulnerable until patched.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Visionos by Apple

View all CVEs affecting Visionos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel memory corruption leading to arbitrary code execution with kernel privileges, complete system compromise, or persistent malware installation.

🟠

Likely Case

System crashes, denial of service, or application instability due to memory corruption.

🟢

If Mitigated

Limited impact with proper patch management and security controls in place.

🌐 Internet-Facing: MEDIUM - Requires local access or specific conditions for exploitation, but could be combined with other vulnerabilities.

🏢 Internal Only: MEDIUM - Local attackers or malicious insiders could potentially exploit this vulnerability.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires local access or specific conditions. No public exploit code is currently available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3

Vendor Advisory: https://support.apple.com/en-us/122066

Restart Required: Yes

Instructions:

1. Open System Settings (macOS) or Settings (iOS/iPadOS/visionOS). 2. Navigate to General > Software Update. 3. Install the available update. 4. Restart the device when prompted.

🧯 If You Can't Patch

Restrict physical and network access to affected devices.
Implement application allowlisting to prevent unauthorized code execution.

🔍 How to Verify

Check if Vulnerable:

Check current OS version against affected versions listed in the advisory.

Check Version:

macOS: sw_vers -productVersion; iOS/iPadOS: Settings > General > About > Version; visionOS: Settings > General > About > Version

Verify Fix Applied:

Verify OS version is equal to or greater than the patched versions listed in the fix information.

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs
System crash reports
Unexpected system restarts

Network Indicators:

Unusual local network activity from Apple devices

SIEM Query:

source="kernel" AND ("panic" OR "crash") AND host="apple-device*"

📊 Metadata

CVE ID: CVE-2025-24154

CVSS v3 Score: 9.1 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE: CWE-787

EPSS Score: 0.5% exploit probability (65.4th percentile)

Published: January 27, 2025

Last Updated: November 3, 2025

🔗 References

https://support.apple.com/en-us/122066 Release Notes,Vendor Advisory
https://support.apple.com/en-us/122068 Release Notes,Vendor Advisory
https://support.apple.com/en-us/122069 Release Notes,Vendor Advisory
https://support.apple.com/en-us/122070 Release Notes,Vendor Advisory
https://support.apple.com/en-us/122073 Release Notes,Vendor Advisory
http://seclists.org/fulldisclosure/2025/Jan/13
http://seclists.org/fulldisclosure/2025/Jan/15
http://seclists.org/fulldisclosure/2025/Jan/16
http://seclists.org/fulldisclosure/2025/Jan/17

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-24154, you might also want to check these: