Login Sign Up

CVE-2025-24190

9.8 CRITICAL
Denial of Service

📋 TL;DR

This is a critical memory corruption vulnerability in Apple's video processing components across multiple operating systems. Processing a maliciously crafted video file can cause unexpected application termination or corrupt process memory, potentially leading to arbitrary code execution. All users running affected Apple operating systems are vulnerable.

💻 Affected Systems

Products:
  • visionOS
  • macOS
  • tvOS
  • iPadOS
  • iOS
Versions: All versions before visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5
Operating Systems: visionOS, macOS, tvOS, iPadOS, iOS
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all default installations that process video files through built-in media frameworks.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Tvos by Apple

View all CVEs affecting Tvos →

Tvos by Apple

View all CVEs affecting Tvos →

Visionos by Apple

View all CVEs affecting Visionos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with kernel privileges leading to complete system compromise, data theft, or ransomware deployment.

🟠

Likely Case

Application crashes (denial of service) or limited memory corruption that could be leveraged for information disclosure or further exploitation.

🟢

If Mitigated

Application termination without further impact if memory corruption is contained within sandboxed processes.

🌐 Internet-Facing: HIGH - Malicious video files can be delivered via web, email, messaging apps, or downloads.
🏢 Internal Only: MEDIUM - Internal users could exploit via shared files or internal applications, but requires user interaction.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires user interaction to open malicious video file, but no authentication needed. Apple has patched this, reducing likelihood of public exploits.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5

Vendor Advisory: https://support.apple.com/en-us/122371

Restart Required: Yes

Instructions:

1. Open Settings/System Preferences. 2. Navigate to Software Update. 3. Install the latest available update for your specific OS version. 4. Restart the device when prompted.

🔧 Temporary Workarounds

Disable automatic video processing

all

Configure applications to not automatically process video files from untrusted sources.

Use application sandboxing

all

Ensure video processing applications run with minimal privileges and sandboxing enabled.

🧯 If You Can't Patch

  • Implement strict file type filtering at network perimeter to block suspicious video files
  • Educate users to avoid opening video files from untrusted sources and disable automatic media preview

🔍 How to Verify

Check if Vulnerable:

Check current OS version against affected versions list. On macOS: About This Mac > macOS version. On iOS/iPadOS: Settings > General > About > Version.

Check Version:

macOS: sw_vers -productVersion; iOS/iPadOS: Settings > General > About > Version (no CLI command)

Verify Fix Applied:

Verify OS version matches or exceeds patched versions listed in fix_official.patch_version.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes related to video processing frameworks (CoreMedia, AVFoundation)
  • Memory access violation errors in system logs
  • Unexpected termination of media-related processes

Network Indicators:

  • Unusual downloads of video files from suspicious sources
  • Network traffic patterns indicating video file delivery

SIEM Query:

source="apple_system_logs" AND (process="videod" OR process="mediaserverd") AND (event="crash" OR event="segfault" OR event="memory_access_violation")

📊 Metadata

CVE ID: CVE-2025-24190
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-400
EPSS Score: 0.77% exploit probability (73.1th percentile)
Published: March 31, 2025
Last Updated: November 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-24190, you might also want to check these:

CVE-2024-45166 9.8

UCI IDOL2 through version 2.12 contains multiple memory corruption vulnerabilities due to improper i...

Same vulnerability type (CWE-400)
CVE-2025-61303 9.8

This vulnerability in Hatching Triage Sandbox allows malware samples to evade detection by recursive...

Same vulnerability type (CWE-400)
CVE-2024-39462 9.8

This is a Linux kernel memory corruption vulnerability in the BCM2711 DVP clock driver where array b...

Same vulnerability type (CWE-400)