Login Sign Up

CVE-2025-30470

5.5 MEDIUM
Path Traversal

📋 TL;DR

This CVE describes a path handling vulnerability in Apple operating systems that could allow an app to read sensitive location information. The issue affects multiple Apple platforms including visionOS, macOS, iOS, and iPadOS. Users running affected versions of these operating systems are vulnerable to potential location data exposure.

💻 Affected Systems

Products:
  • visionOS
  • macOS
  • iOS
  • iPadOS
Versions: Versions prior to visionOS 2.4, macOS Ventura 13.7.5, iOS 18.4, iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5
Operating Systems: Apple visionOS, Apple macOS, Apple iOS, Apple iPadOS
Default Config Vulnerable: ⚠️ Yes
Notes: All affected operating systems in their default configurations are vulnerable. The vulnerability is in the operating system itself, not specific applications.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Visionos by Apple

View all CVEs affecting Visionos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Malicious app could access and exfiltrate precise location data without user consent, enabling tracking, surveillance, or location-based attacks.

🟠

Likely Case

Apps with legitimate permissions could potentially access more location data than intended, leading to privacy violations and data leakage.

🟢

If Mitigated

With proper app sandboxing and permission controls, impact is limited to apps already granted location access, reducing exposure scope.

🌐 Internet-Facing: LOW - This is primarily a local app vulnerability requiring app installation/execution, not directly exploitable over network.
🏢 Internal Only: MEDIUM - Malicious or compromised apps on user devices could exploit this to access location data, posing insider threat risks.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires a malicious app to be installed and executed on the target device. The app would need to bypass or abuse location permission mechanisms.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: visionOS 2.4, macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5

Vendor Advisory: https://support.apple.com/en-us/122371

Restart Required: Yes

Instructions:

1. Open Settings app. 2. Navigate to General > Software Update. 3. Download and install the latest available update for your device. 4. Restart device when prompted.

🔧 Temporary Workarounds

Restrict App Location Permissions

all

Review and restrict location permissions for all apps to minimum necessary level

Disable Location Services

all

Temporarily disable location services for non-critical apps

🧯 If You Can't Patch

  • Implement strict app installation policies to prevent untrusted apps
  • Deploy mobile device management (MDM) solutions to enforce location permission controls

🔍 How to Verify

Check if Vulnerable:

Check current OS version in Settings > General > About > Software Version

Check Version:

On macOS: sw_vers. On iOS/iPadOS: Check in Settings > General > About

Verify Fix Applied:

Verify OS version matches or exceeds patched versions listed in affected_systems

📡 Detection & Monitoring

Log Indicators:

  • Unusual location permission requests
  • Apps accessing location data without user interaction
  • Multiple location API calls from single app

Network Indicators:

  • Unexpected location data exfiltration to external servers
  • Apps sending GPS coordinates to unusual destinations

SIEM Query:

source="apple_location_services" AND (event="permission_granted" OR event="data_access") AND app NOT IN ["trusted_apps_list"]

📊 Metadata

CVE ID: CVE-2025-30470
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
CWE: CWE-22
EPSS Score: 0.07% exploit probability (22th percentile)
Published: March 31, 2025
Last Updated: November 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-30470, you might also want to check these:

CVE-2024-43955 10.0

CVE-2024-43955 is an unauthenticated path traversal vulnerability in the Droip WordPress plugin that...

Same vulnerability type (CWE-22)
CVE-2025-54261 10.0

This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted...

Same vulnerability type (CWE-22)
CVE-2024-40628 10.0

This critical vulnerability in JumpServer allows attackers to read arbitrary files from the Celery c...

Same vulnerability type (CWE-22)