CVE-2025-30434
published 2025-03-31CVE-2025-30434: The issue was addressed with improved input sanitization. This issue is fixed in iOS 18.4 and iPadOS 18.4. Processing a maliciously crafted file may lead to a…
medium5CVSS 3.1
AVLACLPRNUIRSCCLILAN
The issue was addressed with improved input sanitization. This issue is fixed in iOS 18.4 and iPadOS 18.4. Processing a maliciously crafted file may lead to a cross site scripting attack.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_18.4_and_ipados | — | — |
| apple | ios_and_ipados | < 18.4 | 18.4 |
| apple | ipados | < 18.4 | 18.4 |
| apple | iphone_os | < 18.4 | 18.4 |
Apple
CVE-2025-30434: iOS 18.4 and iPadOS 18.4
vendor_apple·2025-03-31·CVSS 5.0
CVE-2025-30434 [MEDIUM] CVE-2025-30434: iOS 18.4 and iPadOS 18.4
Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4
Product: iOS 18.4 and iPadOS
Version: 18.4
CVE: CVE-2025-30434
Component: Journal
Impact: Processing a maliciously crafted file may lead to a cross site scripting attack
Description: The issue was addressed with improved input sanitization.
GHSA
GHSA-2xcc-3vq7-mvjp: The issue was addressed with improved input sanitization
ghsa_unreviewed·2025-04-01
CVE-2025-30434 [MEDIUM] CWE-79 GHSA-2xcc-3vq7-mvjp: The issue was addressed with improved input sanitization
The issue was addressed with improved input sanitization. This issue is fixed in iOS 18.4 and iPadOS 18.4. Processing a maliciously crafted file may lead to a cross site scripting attack.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-03-31
Published