Apple Ios 18.4 And Ipados vulnerabilities

CVE-2025-30429 [MEDIUM] CVE-2025-30429: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30429 Component: Calendar Impact: An app may be able to break out of its sandbox Description: A path handling issue was addressed with improved validation.

CVE-2025-30439 [MEDIUM] CVE-2025-30439: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30439 Component: Focus Impact: An attacker with physical access to a locked device may be able to view sensitive user information Description: The issue was addressed with improved checks.

CVE-2025-24208 [MEDIUM] CVE-2025-24208: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24208 Component: WebKit Impact: Loading a malicious iframe may lead to a cross-site scripting attack Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24113 [MEDIUM] CVE-2025-24113: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24113 Component: Safari Impact: Visiting a malicious website may lead to user interface spoofing Description: The issue was addressed with improved UI.

CVE-2025-24097 [MEDIUM] CVE-2025-24097: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24097 Component: AirDrop Impact: An app may be able to read arbitrary file metadata Description: A permissions issue was addressed with additional restrictions.

CVE-2025-30428 [MEDIUM] CVE-2025-30428: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30428 Component: Photos Impact: Photos in the Hidden Photos Album may be viewed without authentication Description: This issue was addressed through improved state management.

CVE-2025-24283 [MEDIUM] CVE-2025-24283: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24283 Component: Focus Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-31202 [MEDIUM] CVE-2025-31202: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31202 Component: AirPlay Impact: An attacker on the local network may be able to cause a denial-of-service Description: A null pointer dereference was addressed with improved input validation.

CVE-2025-24220 [MEDIUM] CVE-2025-24220: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24220 Component: Sandbox Profiles Impact: An app may be able to read a persistent device identifier Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24217 [MEDIUM] CVE-2025-24217: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24217 Component: Siri Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved redaction of sensitive information.

CVE-2025-31197 [MEDIUM] CVE-2025-31197: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-31197 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-30470 [MEDIUM] CVE-2025-30470: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30470 Component: Maps Impact: An app may be able to read sensitive location information Description: A path handling issue was addressed with improved logic.

CVE-2025-24214 [MEDIUM] CVE-2025-24214: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24214 Component: Siri Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed by not logging contents of text fields.

CVE-2025-24205 [MEDIUM] CVE-2025-24205: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24205 Component: Siri Impact: An app may be able to access user-sensitive data Description: An authorization issue was addressed with improved state management.

CVE-2025-27113 [LOW] CVE-2025-27113: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-27113 Component: CVE-2025-27113

CVE-2025-24193 [LOW] CVE-2025-24193: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-24193 Component: MobileLockdown Impact: An attacker with a USB-C connection to an unlocked device may be able to programmatically access photos Description: This issue was addressed with improved authentication.

CVE-2025-30469 [LOW] CVE-2025-30469: iOS 18.4 and iPadOS 18.4 Apple Security Update: About the security content of iOS 18.4 and iPadOS 18.4 Product: iOS 18.4 and iPadOS Version: 18.4 CVE: CVE-2025-30469 Component: Photos Impact: A person with physical access to an iOS device may be able to access photos from the lock screen Description: This issue was addressed through improved state management.