Apple Products Remote Code Execution Vulnerability

Release Date: 12 Mar 2025

RISK: High Risk

TYPE: Operating Systems - Mobile & Apps

A vulnerability has been identified in Apple Products. A remote attacker could exploit this vulnerability to trigger remote code execution and denial of service on the targeted system.

 

Note:

Apple is aware of CVE-2025-24201 have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 17.2.

---

Impact

• Remote Code Execution
• Denial of Service

---

System / Technologies affected

• Versions prior to Safari 18.3.1
• Versions prior to iOS 18.3.2 and iPadOS 18.3.2
• Versions prior to macOS Sequoia 15.3.2
• Versions prior to visionOS 2.3.2

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

 

• Safari 18.3.1
• iOS 18.3.2 and iPadOS 18.3.2
• MacOS Sequoia 15.3.2
• VisionOS 2.3.2

---

Vulnerability Identifier

• CVE-2025-24201

---

Source

• Apple

---

Related Link

• https://support.apple.com/en-us/122285
• https://support.apple.com/en-us/122281
• https://support.apple.com/en-us/122283
• https://support.apple.com/en-us/122284