CVE-2025-24150

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 27, 2025

Updated: Feb 5, 2025

CWE ID 77

Summary

CVE-2025-24150 is a privacy vulnerability affecting macOS Sequoia 15.3, Safari 18.3, iOS 18.3, and iPadOS 18.3. It was identified as an issue with the handling of files in Web Inspector. By copying a malicious URL from the inspector, an attacker could potentially execute command injection, posing a threat to user privacy. This issue has been rectified in the recent updates to these Apple operating systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2ifyIV
https://www.cve.org/CVERecord?id=CVE-2025-24150
https://nvd.nist.gov/vuln/detail/CVE-2025-24150

Back to Vulnerability Database

CVE-2025-24150

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations