Apple iPadOS vulnerabilities

1,828 known vulnerabilities affecting apple/ipados.

Total CVEs

1,828

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL105HIGH801MEDIUM799LOW123

Vulnerabilities

Page 16 of 92

CVE-2025-24252HIGHCVSS 8.8fixed in 17.7.6≥ 18.0, < 18.42025-04-29

CVE-2025-24252 [HIGH] CWE-416 CVE-2025-24252: A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 18. A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. An attacker on the local network may be able to corrupt process memory.

cvelistv5nvd

CVE-2025-24206HIGHCVSS 7.7fixed in 17.7.6≥ 18.0, < 18.42025-04-29

CVE-2025-24206 [HIGH] CWE-288 CVE-2025-24206: An authentication issue was addressed with improved state management. This issue is fixed in iOS 18. An authentication issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. An attacker on the local network may be able to bypass authentication policy.

cvelistv5nvd

CVE-2025-24179MEDIUMCVSS 5.7fixed in 17.7.6≥ 18.0, < 18.32025-04-29

CVE-2025-24179 [MEDIUM] CWE-476 CVE-2025-24179: A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.6, macOS Sequoia 15.3, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.3, visionOS 2.3. An attacker on the local network may be able to cause a denial-of-service.

cvelistv5nvd

CVE-2025-31202MEDIUMCVSS 5.5fixed in 18.42025-04-29

CVE-2025-31202 [MEDIUM] CWE-476 CVE-2025-31202: A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4. An attacker on the local network may be able to cause a denial-of-service.

nvd

CVE-2025-24271MEDIUMCVSS 5.4fixed in 17.7.6≥ 18.0, < 18.42025-04-29

CVE-2025-24271 [MEDIUM] CWE-306 CVE-2025-24271: An access issue was addressed with improved access restrictions. This issue is fixed in iOS 18.4 and An access issue was addressed with improved access restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. An unauthenticated user on the same network as a signed-in Mac could send it AirPlay commands without pairing.

cvelistv5nvd

CVE-2025-24270MEDIUMCVSS 5.7fixed in 17.7.6≥ 18.0, < 18.42025-04-29

CVE-2025-24270 [MEDIUM] CWE-200 CVE-2025-24270: This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 18.4 and iPadOS This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. An attacker on the local network may be able to leak sensitive user information.

cvelistv5nvd

CVE-2025-30445MEDIUMCVSS 6.5fixed in 17.7.6≥ 18.0, < 18.42025-04-29

CVE-2025-30445 [MEDIUM] CWE-843 CVE-2025-30445: A type confusion issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadO A type confusion issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. An attacker on the local network may cause an unexpected app termination.

cvelistv5nvd

CVE-2025-31197MEDIUMCVSS 5.7fixed in 17.7.6≥ 18.0, < 18.42025-04-29

CVE-2025-31197 [MEDIUM] CWE-416 CVE-2025-31197: The issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadO The issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4. An attacker on the local network may cause an unexpected app termination.

cvelistv5nvd

CVE-2025-31203MEDIUMCVSS 6.5fixed in 17.7.6≥ 18.0, < 18.42025-04-29

CVE-2025-31203 [MEDIUM] CWE-190 CVE-2025-31203: An integer overflow was addressed with improved input validation. This issue is fixed in iOS 18.4 an An integer overflow was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An attacker on the local network may be able to cause a denial-of-service.

cvelistv5nvd

CVE-2025-24251MEDIUMCVSS 6.5fixed in 17.7.6≥ 18.0, < 18.42025-04-29

CVE-2025-24251 [MEDIUM] CWE-476 CVE-2025-24251: The issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadO The issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An attacker on the local network may cause an unexpected app termination.

cvelistv5nvd

CVE-2025-31201CRITICALCVSS 9.8KEVfixed in 18.4.12025-04-16

CVE-2025-31201 [CRITICAL] CWE-1220 CVE-2025-31201: This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 18.4.1 and iPad This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1, tvOS 18.4.1, visionOS 2.4.1. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication. Apple is aware of a report that this issue may have been exploited in an extremely soph

nvd

CVE-2025-31200CRITICALCVSS 9.8KEVfixed in 18.4.12025-04-16

CVE-2025-31200 [CRITICAL] CWE-119 CVE-2025-31200: A memory corruption issue was addressed with improved bounds checking. This issue is fixed in iOS 18 A memory corruption issue was addressed with improved bounds checking. This issue is fixed in iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1, tvOS 18.4.1, visionOS 2.4.1, watchOS 11.5. Processing an audio stream in a maliciously crafted media file may result in code execution. Apple is aware of a report that this issue may have been exploited

nvd

CVE-2023-42875HIGHCVSS 7.3fixed in 17.02025-04-11

CVE-2023-42875 [HIGH] CWE-94 CVE-2023-42875: Processing web content may lead to arbitrary code execution. This issue is fixed in iOS 17 and iPadO Processing web content may lead to arbitrary code execution. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. The issue was addressed with improved memory handling.

nvd

CVE-2023-42970HIGHCVSS 8.8fixed in 17.02025-04-11

CVE-2023-42970 [HIGH] CWE-416 CVE-2023-42970: A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution.

nvd

CVE-2023-38614MEDIUMCVSS 4.3fixed in 17.02025-04-11

CVE-2023-38614 [MEDIUM] CWE-269 CVE-2023-38614: A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iP A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access sensitive user data.

nvd

CVE-2023-42961MEDIUMCVSS 6.3fixed in 16.72025-04-11

CVE-2023-42961 [MEDIUM] CWE-22 CVE-2023-42961: A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPad A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPadOS 17, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14, macOS Ventura 13.6, macOS Monterey 12.7. A sandboxed process may be able to circumvent sandbox restrictions.

nvd

CVE-2023-42973MEDIUMCVSS 4.0v17.02025-04-11

CVE-2023-42973 [MEDIUM] CWE-285 CVE-2023-42973: Private Browsing tabs may be accessed without authentication. This issue is fixed in iOS 17 and iPad Private Browsing tabs may be accessed without authentication. This issue is fixed in iOS 17 and iPadOS 17. The issue was addressed with improved UI.

nvd

CVE-2023-42969LOWCVSS 3.3fixed in 16.72025-04-11

CVE-2023-42969 [LOW] CWE-284 CVE-2023-42969: An app may be able to break out of its sandbox. This issue is fixed in iOS 17 and iPadOS 17, iOS 16. An app may be able to break out of its sandbox. This issue is fixed in iOS 17 and iPadOS 17, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14, macOS Ventura 13.6, macOS Monterey 12.7. The issue was addressed with improved handling of caches.

nvd

CVE-2025-30426CRITICALCVSS 9.8fixed in 17.7.6≥ 18.0, < 18.42025-03-31

CVE-2025-30426 [CRITICAL] CWE-200 CVE-2025-30426: This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.4 and iPa This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to enumerate a user's installed apps.

cvelistv5nvd

CVE-2025-24230CRITICALCVSS 9.8fixed in 17.7.6≥ 18.0, < 18.42025-03-31

CVE-2025-24230 [CRITICAL] CWE-125 CVE-2025-24230: An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. Playing a malicious audio file may lead to an unexpected app termination.

cvelistv5nvd

← Previous16 / 92Next →