CVE-2025-24145

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Jan 27, 2025

Updated: Feb 4, 2025

CWE ID 532

Summary

CVE-2025-24145 is a privacy vulnerability affecting macOS Sequoia 15.3, iOS 18.3, and iPadOS 18.3. This issue allowed certain apps to access a contact's phone number information from system logs. The vulnerability has been resolved with improved private data redaction for log entries, ensuring that sensitive information remains protected.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

iOS
MacOS
iPadOS
Apple (iPhone OS)

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2ifDKK
https://www.cve.org/CVERecord?id=CVE-2025-24145
https://nvd.nist.gov/vuln/detail/CVE-2025-24145

Back to Vulnerability Database