CVE-2025-24102
Description
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. An app may be able to determine a user’s current location.
CWE
- CWE-200 — CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Affected
- Apple / iPadOS — v=0 <17.7.4 [affected]
- Apple / macOS — v=0 <13.7.3 [affected]; v=0 <14.7.3 [affected]; v=0 <15.3 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/122067
- https://support.apple.com/en-us/122068
- https://support.apple.com/en-us/122069
- https://support.apple.com/en-us/122070
Source
cvelistV5-main/cves/2025/24xxx/CVE-2025-24102.json