CVE-2025-24182
published 2025-03-31CVE-2025-24182: An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, tvOS 18.4…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing a maliciously crafted font may result in the disclosure of process memory.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_18.4_and_ipados | — | — |
| apple | ios_and_ipados | < 18.4 | 18.4 |
| apple | ipados | < 18.4 | 18.4 |
| apple | iphone_os | < 18.4 | 18.4 |
| apple | macos | < 15.4 | 15.4 |
| apple | macos | >= 15.0 < 15.4 | 15.4 |
| apple | macos_sequoia | — | — |
| apple | tvos | < 18.4 | 18.4 |
| apple | tvos | — | — |
| apple | visionos | < 2.4 | 2.4 |
| apple | visionos | — | — |
| apple | watchos | < 11.4 | 11.4 |
| apple | watchos | — | — |