CVE-2025-24156
Published: 27 January 2025
Description
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Security Summary
CVE-2025-24156 is an integer overflow vulnerability (CWE-190) in macOS, addressed through improved input validation. It affects macOS versions prior to Sequoia 15.3, Sonoma 14.7.3, and Ventura 13.7.3, with a CVSS v3.1 base score of 7.8 (High). The flaw enables an app to elevate privileges, potentially compromising system security.
A local attacker with low privileges (PR:L) can exploit this vulnerability with low attack complexity (AC:L) and no user interaction required (UI:N). Successful exploitation grants high impacts on confidentiality, integrity, and availability (C:H/I:H/A:H) within the unchanged security scope (S:U), allowing privilege escalation from an installed or executed app.
Apple security advisories confirm the issue was fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, and macOS Ventura 13.7.3 via enhanced input validation. Practitioners should apply these updates promptly to mitigate the risk, as detailed in the referenced support pages.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Integer overflow in macOS enables local privilege escalation from a low-privileged app with no user interaction, directly mapping to exploitation for privilege escalation.