Vulnerability-Lookup

CVE-2025-24097 (GCVE-0-2025-24097)

Vulnerability from cvelistv5 – Published: 2025-03-31 22:24 – Updated: 2026-04-02 18:23

Summary

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. An app may be able to read arbitrary file metadata.

Severity

5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

An app may be able to read arbitrary file metadata
CWE-125 - Out-of-bounds Read

Assigner

apple

References

12 references

URL	Tags
https://support.apple.com/en-us/122371
https://support.apple.com/en-us/122373
https://support.apple.com/en-us/122374
https://support.apple.com/en-us/122376
https://support.apple.com/en-us/122377
https://support.apple.com/en-us/122405
http://seclists.org/fulldisclosure/2025/May/6
http://seclists.org/fulldisclosure/2025/Apr/13
http://seclists.org/fulldisclosure/2025/Apr/9
http://seclists.org/fulldisclosure/2025/Apr/8
http://seclists.org/fulldisclosure/2025/Apr/4
http://seclists.org/fulldisclosure/2025/Apr/11

Impacted products

5 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: 0 , < 18.4 (custom)
Apple	iPadOS	Affected: 0 , < 17.7.7 (custom)
Apple	macOS	Affected: 0 , < 14.7.5 (custom) Affected: 0 , < 15.4 (custom)
Apple	tvOS	Affected: 0 , < 18.4 (custom)
Apple	watchOS	Affected: 0 , < 11.4 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-24097",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-01T04:22:50.277186Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-01T04:23:27.696Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T21:01:04.515Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://seclists.org/fulldisclosure/2025/May/6"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2025/Apr/13"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2025/Apr/9"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2025/Apr/8"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2025/Apr/4"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2025/Apr/11"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "18.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17.7.7",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14.7.5",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "15.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "18.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "watchOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "11.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. An app may be able to read arbitrary file metadata."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to read arbitrary file metadata",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-02T18:23:49.096Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/122371"
        },
        {
          "url": "https://support.apple.com/en-us/122373"
        },
        {
          "url": "https://support.apple.com/en-us/122374"
        },
        {
          "url": "https://support.apple.com/en-us/122376"
        },
        {
          "url": "https://support.apple.com/en-us/122377"
        },
        {
          "url": "https://support.apple.com/en-us/122405"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2025-24097",
    "datePublished": "2025-03-31T22:24:00.602Z",
    "dateReserved": "2025-01-17T00:00:44.967Z",
    "dateUpdated": "2026-04-02T18:23:49.096Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-24097",
      "date": "2026-06-05",
      "epss": "0.00021",
      "percentile": "0.06143"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-24097\",\"sourceIdentifier\":\"product-security@apple.com\",\"published\":\"2025-03-31T23:15:16.213\",\"lastModified\":\"2026-04-02T19:18:58.970\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. An app may be able to read arbitrary file metadata.\"},{\"lang\":\"es\",\"value\":\"Se solucion\u00f3 un problema de permisos con restricciones adicionales. Este problema se solucion\u00f3 en macOS Sonoma 14.7.5, iOS 18.4 y iPadOS 18.4, tvOS 18.4 y macOS Sequoia 15.4. Una aplicaci\u00f3n podr\u00eda leer metadatos de archivos arbitrarios.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N\",\"baseScore\":5.0,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.3,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.4\",\"matchCriteriaId\":\"6B3450F7-7B4A-46CE-A6E0-BBE6569F2EBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.4\",\"matchCriteriaId\":\"0D9C73F9-FEF4-4FC1-B83D-56566AD35990\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.7.5\",\"matchCriteriaId\":\"4574F5B9-8508-4E60-9B09-E6E467A34C1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"15.4\",\"matchCriteriaId\":\"E3BD0A90-23F1-430A-8119-E14055F7E621\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.4\",\"matchCriteriaId\":\"8C61CCC2-87D3-4A3A-837B-63C48299A7AD\"}]}]}],\"references\":[{\"url\":\"https://support.apple.com/en-us/122371\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/122373\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/122374\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/122376\",\"source\":\"product-security@apple.com\"},{\"url\":\"https://support.apple.com/en-us/122377\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/122405\",\"source\":\"product-security@apple.com\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Apr/11\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Apr/13\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Apr/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Apr/8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Apr/9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/May/6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://seclists.org/fulldisclosure/2025/May/6\"}, {\"url\": \"http://seclists.org/fulldisclosure/2025/Apr/13\"}, {\"url\": \"http://seclists.org/fulldisclosure/2025/Apr/9\"}, {\"url\": \"http://seclists.org/fulldisclosure/2025/Apr/8\"}, {\"url\": \"http://seclists.org/fulldisclosure/2025/Apr/4\"}, {\"url\": \"http://seclists.org/fulldisclosure/2025/Apr/11\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-03T21:01:04.515Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-24097\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-01T04:22:50.277186Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-125\", \"description\": \"CWE-125 Out-of-bounds Read\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-01T04:23:22.658Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Apple\", \"product\": \"iOS and iPadOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"18.4\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"iPadOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"17.7.7\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"14.7.5\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"15.4\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"tvOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"18.4\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"watchOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"11.4\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://support.apple.com/en-us/122371\"}, {\"url\": \"https://support.apple.com/en-us/122373\"}, {\"url\": \"https://support.apple.com/en-us/122374\"}, {\"url\": \"https://support.apple.com/en-us/122376\"}, {\"url\": \"https://support.apple.com/en-us/122377\"}, {\"url\": \"https://support.apple.com/en-us/122405\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. An app may be able to read arbitrary file metadata.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"An app may be able to read arbitrary file metadata\"}]}], \"providerMetadata\": {\"orgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"shortName\": \"apple\", \"dateUpdated\": \"2026-04-02T18:23:49.096Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-24097\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-02T18:23:49.096Z\", \"dateReserved\": \"2025-01-17T00:00:44.967Z\", \"assignerOrgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"datePublished\": \"2025-03-31T22:24:00.602Z\", \"assignerShortName\": \"apple\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

WID-SEC-W-2025-1003

Vulnerability from csaf_certbund - Published: 2025-05-12 22:00 - Updated: 2025-11-23 23:00

Summary

Apple iOS und iPadOS: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Das Apple iOS (vormals iPhone OS) ist das Betriebssystem für das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch. Das Apple iPadOS ist das Betriebssystem für das von Apple entwickelte iPad.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple iOS und Apple iPadOS ausnutzen, um erweiterte Rechte zu erlangen, beliebigen Code auszuführen, einen Denial-of-Service-Zustand zu verursachen, vertrauliche Informationen preiszugeben oder Spoofing-Angriffe durchzuführen.

Betroffene Betriebssysteme: - MacOS X

CVE-2024-8176

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-24097

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-24111

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-24144

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-24213

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-24220

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-24223

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-24225

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-24259

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-30448

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31196

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31204

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31205

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31206

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31207

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31208

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31209

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31210

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31212

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31213

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31214

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31215

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31216

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31217

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31219

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31220

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31221

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31222

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31223

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31225

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31226

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31227

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31228

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31233

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31234

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31235

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31238

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31239

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31241

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31242

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31245

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31251

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31253

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

CVE-2025-31257

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple iOS <18.5 Apple / iOS		<18.5
Apple iPadOS <18.5 Apple / iPadOS		<18.5
Apple iPadOS <17.7.7 Apple / iPadOS		<17.7.7

References

6 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://lists.apple.com/archives/security-announc…	external
https://lists.apple.com/archives/security-announc…	external
https://support.apple.com/en-us/122404	external
https://support.apple.com/en-us/122405	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Das Apple iOS (vormals iPhone OS) ist das Betriebssystem f\u00fcr das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch.\r\nDas Apple iPadOS ist das Betriebssystem f\u00fcr das von Apple entwickelte iPad.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple iOS und Apple iPadOS ausnutzen, um erweiterte Rechte zu erlangen, beliebigen Code auszuf\u00fchren, einen Denial-of-Service-Zustand zu verursachen, vertrauliche Informationen preiszugeben oder Spoofing-Angriffe durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- MacOS X",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1003 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1003.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1003 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1003"
      },
      {
        "category": "external",
        "summary": "APPLE-SA-05-12-2025-1 iOS 18.5 and iPadOS 18.5 vom 2025-05-12",
        "url": "https://lists.apple.com/archives/security-announce/2025/May/msg00000.html"
      },
      {
        "category": "external",
        "summary": "APPLE-SA-05-12-2025-2 iPadOS 17.7.7 vom 2025-05-12",
        "url": "https://lists.apple.com/archives/security-announce/2025/May/msg00001.html"
      },
      {
        "category": "external",
        "summary": "iOS 18.5 and iPadOS 18.5 vom 2025-05-12",
        "url": "https://support.apple.com/en-us/122404"
      },
      {
        "category": "external",
        "summary": "iPadOS 17.7.7 vom 2025-05-12",
        "url": "https://support.apple.com/en-us/122405"
      }
    ],
    "source_lang": "en-US",
    "title": "Apple iOS und iPadOS: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-11-23T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-24T07:22:19.989+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-1003",
      "initial_release_date": "2025-05-12T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-05-12T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-05-15T22:00:00.000+00:00",
          "number": "2",
          "summary": "Referenz(en) aufgenommen: EUVD-2025-14780, EUVD-2025-14863"
        },
        {
          "date": "2025-11-23T23:00:00.000+00:00",
          "number": "3",
          "summary": "CVE-2025-31216 erg\u00e4nzt"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c18.5",
                "product": {
                  "name": "Apple iOS \u003c18.5",
                  "product_id": "T043555"
                }
              },
              {
                "category": "product_version",
                "name": "18.5",
                "product": {
                  "name": "Apple iOS 18.5",
                  "product_id": "T043555-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:iphone_os:18.5"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "iOS"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c18.5",
                "product": {
                  "name": "Apple iPadOS \u003c18.5",
                  "product_id": "T043556"
                }
              },
              {
                "category": "product_version",
                "name": "18.5",
                "product": {
                  "name": "Apple iPadOS 18.5",
                  "product_id": "T043556-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:ipados:18.5"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c17.7.7",
                "product": {
                  "name": "Apple iPadOS \u003c17.7.7",
                  "product_id": "T043557"
                }
              },
              {
                "category": "product_version",
                "name": "17.7.7",
                "product": {
                  "name": "Apple iPadOS 17.7.7",
                  "product_id": "T043557-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:ipados:17.7.7"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "iPadOS"
          }
        ],
        "category": "vendor",
        "name": "Apple"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-8176",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2024-8176"
    },
    {
      "cve": "CVE-2025-24097",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-24097"
    },
    {
      "cve": "CVE-2025-24111",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-24111"
    },
    {
      "cve": "CVE-2025-24144",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-24144"
    },
    {
      "cve": "CVE-2025-24213",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-24213"
    },
    {
      "cve": "CVE-2025-24220",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-24220"
    },
    {
      "cve": "CVE-2025-24223",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-24223"
    },
    {
      "cve": "CVE-2025-24225",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-24225"
    },
    {
      "cve": "CVE-2025-24259",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-24259"
    },
    {
      "cve": "CVE-2025-30448",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-30448"
    },
    {
      "cve": "CVE-2025-31196",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31196"
    },
    {
      "cve": "CVE-2025-31204",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31204"
    },
    {
      "cve": "CVE-2025-31205",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31205"
    },
    {
      "cve": "CVE-2025-31206",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31206"
    },
    {
      "cve": "CVE-2025-31207",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31207"
    },
    {
      "cve": "CVE-2025-31208",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31208"
    },
    {
      "cve": "CVE-2025-31209",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31209"
    },
    {
      "cve": "CVE-2025-31210",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31210"
    },
    {
      "cve": "CVE-2025-31212",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31212"
    },
    {
      "cve": "CVE-2025-31213",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31213"
    },
    {
      "cve": "CVE-2025-31214",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31214"
    },
    {
      "cve": "CVE-2025-31215",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31215"
    },
    {
      "cve": "CVE-2025-31216",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31216"
    },
    {
      "cve": "CVE-2025-31217",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31217"
    },
    {
      "cve": "CVE-2025-31219",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31219"
    },
    {
      "cve": "CVE-2025-31220",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31220"
    },
    {
      "cve": "CVE-2025-31221",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31221"
    },
    {
      "cve": "CVE-2025-31222",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31222"
    },
    {
      "cve": "CVE-2025-31223",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31223"
    },
    {
      "cve": "CVE-2025-31225",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31225"
    },
    {
      "cve": "CVE-2025-31226",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31226"
    },
    {
      "cve": "CVE-2025-31227",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31227"
    },
    {
      "cve": "CVE-2025-31228",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31228"
    },
    {
      "cve": "CVE-2025-31233",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31233"
    },
    {
      "cve": "CVE-2025-31234",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31234"
    },
    {
      "cve": "CVE-2025-31235",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31235"
    },
    {
      "cve": "CVE-2025-31238",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31238"
    },
    {
      "cve": "CVE-2025-31239",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31239"
    },
    {
      "cve": "CVE-2025-31241",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31241"
    },
    {
      "cve": "CVE-2025-31242",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31242"
    },
    {
      "cve": "CVE-2025-31245",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31245"
    },
    {
      "cve": "CVE-2025-31251",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31251"
    },
    {
      "cve": "CVE-2025-31253",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31253"
    },
    {
      "cve": "CVE-2025-31257",
      "product_status": {
        "known_affected": [
          "T043555",
          "T043556",
          "T043557"
        ]
      },
      "release_date": "2025-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-31257"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-24097 (GCVE-0-2025-24097)

WID-SEC-W-2025-1003

Tags

Sightings

Nomenclature