Apple Ios 18.4 And Ipados vulnerabilities

CVE-2025-24190 [CRITICAL] CVE-2025-24190: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24190 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination or corrupt process memory Description: The issue was addressed with improved memory handling.

CVE-2025-31183 [CRITICAL] CVE-2025-31183: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31183 Component: Siri Impact: An app may be able to access sensitive user data Description: The issue was addressed with improved restriction of data container access.

CVE-2025-30436 [CRITICAL] CVE-2025-30436: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30436 Component: Siri Impact: An attacker may be able to use Siri to enable Auto-Answer Calls Description: This issue was addressed by restricting options offered on a locked device.

CVE-2025-30466 [CRITICAL] CVE-2025-30466: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30466 Component: Safari Impact: A website may be able to bypass Same Origin Policy Description: This issue was addressed through improved state management.

CVE-2025-30430 [CRITICAL] CVE-2025-30430: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30430 Component: Authentication Services Impact: Password autofill may fill in passwords after failing authentication Description: This issue was addressed through improved state management.

CVE-2025-24237 [CRITICAL] CVE-2025-24237: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24237 Component: BiometricKit Impact: An app may be able to cause unexpected system termination Description: A buffer overflow was addressed with improved bounds checking.

CVE-2025-30433 [CRITICAL] CVE-2025-30433: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30433 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: This issue was addressed with improved access restrictions.

CVE-2025-24211 [CRITICAL] CVE-2025-24211: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24211 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination or corrupt process memory Description: This issue was addressed with improved memory handling.

CVE-2025-24264 [CRITICAL] CVE-2025-24264: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24264 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: The issue was addressed with improved memory handling.

CVE-2025-30426 [CRITICAL] CVE-2025-30426: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30426 Component: NetworkExtension Impact: An app may be able to enumerate a user's installed apps Description: This issue was addressed with additional entitlement checks.

CVE-2025-24230 [CRITICAL] CVE-2025-24230: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24230 Component: CoreAudio Impact: Playing a malicious audio file may lead to an unexpected app termination Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2025-24167 [CRITICAL] CVE-2025-24167: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24167 Component: Safari Impact: A download's origin may be incorrectly associated Description: This issue was addressed through improved state management.

CVE-2024-56171 [HIGH] CVE-2024-56171: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2024-56171 Component: CVE-2024-56171 Impact: An app may be able to break out of its sandbox Description: This issue was addressed through improved state management.

CVE-2025-24173 [HIGH] CVE-2025-24173: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24173 Component: Power Services Impact: An app may be able to break out of its sandbox Description: This issue was addressed with additional entitlement checks.

CVE-2025-24221 [HIGH] CVE-2025-24221: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24221 Component: Accounts Impact: Sensitive keychain data may be accessible from an iOS backup Description: This issue was addressed with improved data access restriction.

CVE-2025-24238 [HIGH] CVE-2025-24238: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24238 Component: CVE-2024-56171 Impact: An app may be able to break out of its sandbox Description: This issue was addressed through improved state management.

CVE-2025-24257 [HIGH] CVE-2025-24257: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24257 Component: IOGPUFamily Impact: An app may be able to cause unexpected system termination or write kernel memory Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2025-24180 [HIGH] CVE-2025-24180: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24180 Component: Authentication Services Impact: A malicious website may be able to claim WebAuthn credentials from another website that shares a registrable suffix Description: The issue was addressed with improved input validation.

CVE-2025-24209 [HIGH] CVE-2025-24209: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24209 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2024-48958 [HIGH] CVE-2024-48958: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2024-48958 Component: CVE-2024-48958 Impact: Processing maliciously crafted web content may result in the disclosure of process memory Description: A logic issue was addressed with improved checks.