CVE-2025-24091
published 2025-04-30CVE-2025-24091: An app could impersonate system notifications. Sensitive notifications now require restricted entitlements. This issue is fixed in iOS 18.3 and iPadOS 18.3…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
An app could impersonate system notifications. Sensitive notifications now require restricted entitlements. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.3. An app may be able to cause a denial-of-service.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_18.3_and_ipados | — | — |
| apple | ios_and_ipados | < 18.3 | 18.3 |
| apple | ipados | < 17.7.3 | 17.7.3 |
| apple | ipados | >= 18.0 < 18.3 | 18.3 |
| apple | ipados17.7.3 | — | — |
| apple | iphone_os | <= 18.3 | — |