CVE-2025-24231
Published: 31 March 2025
Description
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Security Summary
CVE-2025-24231 is a vulnerability classified under CWE-787 (Out-of-bounds Write) that affects macOS Sequoia prior to version 15.4, macOS Sonoma prior to 14.7.5, and macOS Ventura prior to 13.7.5. The flaw enables an app to modify protected parts of the file system due to insufficient checks, as detailed in the CVE description published on 2025-03-31.
The vulnerability carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), making it remotely exploitable over a network with low attack complexity, no required privileges, and no user interaction. Any remote attacker can leverage a malicious app to achieve high impacts on confidentiality, integrity, and availability by altering protected file system regions.
Apple's advisories confirm the issue was addressed through improved checks in macOS Sequoia 15.4, macOS Sonoma 14.7.5, and macOS Ventura 13.7.5. Additional details are available in security content updates at https://support.apple.com/en-us/122373, https://support.apple.com/en-us/122374, and https://support.apple.com/en-us/122375, along with full disclosures at http://seclists.org/fulldisclosure/2025/Apr/10 and http://seclists.org/fulldisclosure/2025/Apr/8.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Out-of-bounds write allowing unprivileged app to modify protected file system areas directly enables exploitation for privilege escalation by bypassing OS protections.