Apple Ios 18.4 And Ipados vulnerabilities

CVE-2025-30427 [MEDIUM] CVE-2025-30427: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30427 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-24203 [MEDIUM] CVE-2025-24203: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24203 Component: Kernel Impact: An app may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2025-30445 [MEDIUM] CVE-2025-30445: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30445 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: A type confusion issue was addressed with improved checks.

CVE-2025-24244 [MEDIUM] CVE-2025-24244: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24244 Component: Audio Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: The issue was addressed with improved memory handling.

CVE-2025-30432 [MEDIUM] CVE-2025-30432: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30432 Component: Kernel Impact: A malicious app may be able to attempt passcode entries on a locked device and thereby cause escalating time delays after 4 failures Description: A logic issue was addressed with improved state management.

CVE-2025-30454 [MEDIUM] CVE-2025-30454: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30454 Component: CoreMedia Playback Impact: A malicious app may be able to access private information Description: A path handling issue was addressed with improved validation.

CVE-2025-30434 [MEDIUM] CVE-2025-30434: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30434 Component: Journal Impact: Processing a maliciously crafted file may lead to a cross site scripting attack Description: The issue was addressed with improved input sanitization.

CVE-2025-31191 [MEDIUM] CVE-2025-31191: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31191 Component: CoreServices Impact: An app may be able to access sensitive user data Description: This issue was addressed through improved state management.

CVE-2025-43205 [MEDIUM] CVE-2025-43205: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-43205 Component: Audio Impact: An app may be able to bypass ASLR Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-24271 [MEDIUM] CVE-2025-24271: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24271 Component: AirPlay Impact: An unauthenticated user on the same network as a signed-in Mac could send it AirPlay commands without pairing Description: An access issue was addressed with improved access restrictions.

CVE-2025-31203 [MEDIUM] CVE-2025-31203: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31203 Component: CoreUtils Impact: An attacker on the local network may be able to cause a denial-of-service Description: An integer overflow was addressed with improved input validation.

CVE-2025-24251 [MEDIUM] CVE-2025-24251: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24251 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2024-9681 [MEDIUM] CVE-2024-9681: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2024-9681 Component: CVE-2024-9681

CVE-2025-24163 [MEDIUM] CVE-2025-24163: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24163 Component: CoreAudio Impact: Parsing a file may lead to an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-30463 [MEDIUM] CVE-2025-30463: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30463 Component: Handoff Impact: An app may be able to access sensitive user data Description: The issue was addressed with improved restriction of data container access.

CVE-2025-24212 [MEDIUM] CVE-2025-24212: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24212 Component: Calendar Impact: An app may be able to break out of its sandbox Description: This issue was addressed with improved checks.

CVE-2025-31199 [MEDIUM] CVE-2025-31199: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31199 Component: Logging Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-24210 [MEDIUM] CVE-2025-24210: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24210 Component: ImageIO Impact: Parsing an image may lead to disclosure of user information Description: A logic error was addressed with improved error handling.

CVE-2025-24270 [MEDIUM] CVE-2025-24270: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24270 Component: AirPlay Impact: An attacker on the local network may be able to leak sensitive user information Description: This issue was addressed by removing the vulnerable code.

CVE-2025-30425 [MEDIUM] CVE-2025-30425: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30425 Component: WebKit Impact: A malicious website may be able to track users in Safari private browsing mode Description: This issue was addressed through improved state management.