CVE-2025-24178
Published: 31 March 2025
Description
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Security Summary
CVE-2025-24178 is a sandbox escape vulnerability in Apple operating systems, addressed through improved state management. It affects iOS prior to 18.4, iPadOS prior to 18.4 and 17.7.6, macOS Sequoia prior to 15.4, macOS Sonoma prior to 14.7.5, macOS Ventura prior to 13.7.5, tvOS prior to 18.4, and watchOS prior to 11.4. The vulnerability enables an app to break out of its sandbox, earning a CVSS v3.1 base score of 9.8 due to its network accessibility, low attack complexity, lack of required privileges or user interaction, and high impacts on confidentiality, integrity, and availability.
A remote, unauthenticated attacker can exploit this vulnerability over the network with no user interaction or privileges needed. Successful exploitation allows the malicious app to escape its sandboxed environment, potentially granting access to sensitive system resources, data, or capabilities beyond the app's intended isolation.
Apple's security advisories detail the fix via improved state management in the listed patched versions. Relevant updates are documented in support articles at https://support.apple.com/en-us/122371, https://support.apple.com/en-us/122372, https://support.apple.com/en-us/122373, https://support.apple.com/en-us/122374, and https://support.apple.com/en-us/122375, urging users to apply updates promptly to mitigate the risk.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Sandbox escape vulnerability directly enables breaking out of app isolation to access restricted system resources, mapping to exploitation for privilege escalation.