CVE-2025-24092

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 27, 2025

Updated: Jan 28, 2025

CWE ID 125

Summary

CVE-2025-24092 is a vulnerability affecting macOS where an application could potentially access sensitive location information. This issue has been resolved in the latest updates of macOS Sequoia 15.3 and macOS Sonoma 14.7.3 through improved data protection measures. Prior to the patch, the vulnerability could pose a privacy risk, allowing unauthorized access to users' location data.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2ifKKD
https://www.cve.org/CVERecord?id=CVE-2025-24092
https://nvd.nist.gov/vuln/detail/CVE-2025-24092

Back to Vulnerability Database