Apple Ios 18.4 And Ipados vulnerabilities

CVE-2025-30471 [HIGH] CVE-2025-30471: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30471 Component: Security Impact: A remote user may be able to cause a denial-of-service Description: A validation issue was addressed with improved logic.

CVE-2025-24252 [HIGH] CVE-2025-24252: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24252 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-30456 [HIGH] CVE-2025-30456: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30456 Component: DiskArbitration Impact: An app may be able to gain root privileges Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2025-24194 [HIGH] CVE-2025-24194: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24194 Component: CVE-2024-48958 Impact: Processing maliciously crafted web content may result in the disclosure of process memory Description: A logic issue was addressed with improved checks.

CVE-2025-24095 [HIGH] CVE-2025-24095: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24095 Component: RepairKit Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with additional entitlement checks.

CVE-2025-24243 [HIGH] CVE-2025-24243: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24243 Component: Audio Impact: Processing a maliciously crafted file may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.

CVE-2025-31184 [HIGH] CVE-2025-31184: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31184 Component: Web Extensions Impact: An app may gain unauthorized access to Local Network Description: This issue was addressed with improved permissions checking.

CVE-2025-31182 [HIGH] CVE-2025-31182: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31182 Component: CVE-2024-56171 Impact: An app may be able to break out of its sandbox Description: This issue was addressed through improved state management.

CVE-2025-24206 [HIGH] CVE-2025-24206: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24206 Component: AirPlay Impact: An attacker on the local network may be able to bypass authentication policy Description: An authentication issue was addressed with improved state management.

CVE-2025-24178 [HIGH] CVE-2025-24178: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24178 Component: CVE-2024-56171 Impact: An app may be able to break out of its sandbox Description: This issue was addressed through improved state management.

CVE-2025-31196 [MEDIUM] CVE-2025-31196: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31196 Component: CoreGraphics Impact: Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents Description: An out-of-bounds read was addressed with improved input validation.

CVE-2025-31192 [MEDIUM] CVE-2025-31192: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31192 Component: Safari Impact: A website may be able to access sensor information without user consent Description: The issue was addressed with improved checks.

CVE-2025-24192 [MEDIUM] CVE-2025-24192: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24192 Component: Web Extensions Impact: Visiting a website may leak sensitive data Description: A script imports issue was addressed with improved isolation.

CVE-2025-24198 [MEDIUM] CVE-2025-24198: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24198 Component: Siri Impact: An attacker with physical access may be able to use Siri to access sensitive user data Description: This issue was addressed by restricting options offered on a locked device.

CVE-2025-30447 [MEDIUM] CVE-2025-30447: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30447 Component: Foundation Impact: An app may be able to access sensitive user data Description: The issue was resolved by sanitizing logging

CVE-2025-24216 [MEDIUM] CVE-2025-24216: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24216 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: The issue was addressed with improved memory handling.

CVE-2025-30467 [MEDIUM] CVE-2025-30467: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30467 Component: Safari Impact: Visiting a malicious website may lead to address bar spoofing Description: The issue was addressed with improved checks.

CVE-2025-30438 [MEDIUM] CVE-2025-30438: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30438 Component: Share Sheet Impact: A malicious app may be able to dismiss the system notification on the Lock Screen that a recording was started Description: This issue was addressed with improved access restrictions.

CVE-2025-24202 [MEDIUM] CVE-2025-24202: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24202 Component: Accessibility Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-24182 [MEDIUM] CVE-2025-24182: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24182 Component: CoreText Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: An out-of-bounds read issue was addressed with improved input validation.