CVE-2025-24102
published 2025-01-27CVE-2025-24102: The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. An app may…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. An app may be able to determine a user’s current location.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ipados | < 17.7.4 | 17.7.4 |
| apple | ipados | — | — |
| apple | macos | < 13.7.3 | 13.7.3 |
| apple | macos | < 14.7.3 | 14.7.3 |
| apple | macos | < 15.3 | 15.3 |
| apple | macos | >= 13.0 < 13.7.3 | 13.7.3 |
| apple | macos | >= 14.0 < 14.7.3 | 14.7.3 |
| apple | macos | >= 15.0 < 15.3 | 15.3 |
| apple | macos_sequoia | — | — |
| apple | macos_sonoma | — | — |
| apple | macos_ventura | — | — |
Apple
CVE-2025-24102: macOS Ventura 13.7.3
vendor_apple·2025-01-27·CVSS 9.8
CVE-2025-24102 [CRITICAL] CVE-2025-24102: macOS Ventura 13.7.3
Apple Security Update: About the security content of macOS Ventura 13.7.3
Product: macOS Ventura
Version: 13.7.3
CVE: CVE-2025-24102
Component: CoreRoutine
Impact: An app may be able to determine a user’s current location
Description: The issue was addressed with improved checks.
Apple
CVE-2025-24102: macOS Sequoia 15.3
vendor_apple·2025-01-27·CVSS 9.8
CVE-2025-24102 [CRITICAL] CVE-2025-24102: macOS Sequoia 15.3
Apple Security Update: About the security content of macOS Sequoia 15.3
Product: macOS Sequoia
Version: 15.3
CVE: CVE-2025-24102
Component: CoreRoutine
Impact: An app may be able to determine a user’s current location
Description: The issue was addressed with improved checks.
Apple
CVE-2025-24102: iPadOS 17.7.4
vendor_apple·2025-01-27·CVSS 9.8
CVE-2025-24102 [CRITICAL] CVE-2025-24102: iPadOS 17.7.4
Apple Security Update: About the security content of iPadOS 17.7.4
Product: iPadOS
Version: 17.7.4
CVE: CVE-2025-24102
Component: CoreRoutine
Impact: An app may be able to determine a user’s current location
Description: The issue was addressed with improved checks.
Apple
CVE-2025-24102: macOS Sonoma 14.7.3
vendor_apple·2025-01-27·CVSS 9.8
CVE-2025-24102 [CRITICAL] CVE-2025-24102: macOS Sonoma 14.7.3
Apple Security Update: About the security content of macOS Sonoma 14.7.3
Product: macOS Sonoma
Version: 14.7.3
CVE: CVE-2025-24102
Component: CoreRoutine
Impact: An app may be able to determine a user’s current location
Description: The issue was addressed with improved checks.
GHSA
GHSA-mx5v-hjgf-32j4: The issue was addressed with improved checks
ghsa_unreviewed·2025-01-28
CVE-2025-24102 [CRITICAL] CWE-200 GHSA-mx5v-hjgf-32j4: The issue was addressed with improved checks
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. An app may be able to determine a user’s current location.
No detection rules found.
No writeups or analysis indexed.
https://support.apple.com/en-us/122067https://support.apple.com/en-us/122068https://support.apple.com/en-us/122069https://support.apple.com/en-us/122070http://seclists.org/fulldisclosure/2025/Jan/14http://seclists.org/fulldisclosure/2025/Jan/15http://seclists.org/fulldisclosure/2025/Jan/16http://seclists.org/fulldisclosure/2025/Jan/17
2025-01-27
Published