CVE-2025-24182
Description
An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing a maliciously crafted font may result in the disclosure of process memory.
CWE
- CWE-125 — CWE-125 Out-of-bounds Read
Affected
- Apple / iOS and iPadOS — v=0 <18.4 [affected]
- Apple / macOS — v=0 <15.4 [affected]
- Apple / tvOS — v=0 <18.4 [affected]
- Apple / visionOS — v=0 <2.4 [affected]
- Apple / watchOS — v=0 <11.4 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/122371
- https://support.apple.com/en-us/122373
- https://support.apple.com/en-us/122376
- https://support.apple.com/en-us/122377
- https://support.apple.com/en-us/122378
Source
cvelistV5-main/cves/2025/24xxx/CVE-2025-24182.json