CVE-2025-24085 - Apple Multiple Products Use-After-Free Vulnerability

Vulnerability Name

Apple Multiple Products Use-After-Free Vulnerability

Description

Apple iOS, macOS, and other Apple products contain a user-after-free vulnerability that could allow a malicious application to elevate privileges.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://support.apple.com/en-us/122066

https://support.apple.com/en-us/122068

https://support.apple.com/en-us/122071

https://support.apple.com/en-us/122072

https://support.apple.com/en-us/122073

https://nvd.nist.gov/vuln/detail/CVE-2025-24085

Related News Articles

Apple backports zero-day patches to older iPhones and iPadsSeptember 16, 2025

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted AttacksAugust 21, 2025

Apple fixes new zero-day flaw exploited in targeted attacksAugust 21, 2025

Apple patches security flaw exploited in Chrome zero-day attacksJuly 31, 2025

Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted AttacksApril 17, 2025