CVE-2025-24200 : An authorization issue was addressed with improved state management. This issue

An authorization issue was addressed with improved state management. This issue is fixed in iPadOS 17.7.5, iOS 18.3.1 and iPadOS 18.3.1. A physical attack may disable USB Restricted Mode on a locked device. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.

Published 2025-02-10 19:15:40

Updated 2025-04-02 20:33:13

Source Apple Inc.

View at NVD, CVE.org

Products affected by CVE-2025-24200

Apple » Iphone Os
Versions before (<) 18.3.1
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Matching versions
Apple » Ipados
Versions before (<) 17.7.5
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Matching versions
Apple » Ipados
Versions before (<) 18.3.1
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Matching versions
Apple » Ipados
Versions from including (>=) 18.0 and before (<) 18.3.1
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Matching versions

CVE-2025-24200 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Apple iOS and iPadOS Incorrect Authorization Vulnerability

CISA required action:

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

CISA description:

Apple iOS and iPadOS contains an incorrect authorization vulnerability that allows a physical attacker to disable USB Restricted Mode on a locked device.

Notes:

https://support.apple.com/en-us/122173 ; https://nvd.nist.gov/vuln/detail/CVE-2025-24200

Added on 2025-02-12 Action due date 2025-03-05

Exploit prediction scoring system (EPSS) score for CVE-2025-24200

EPSS FAQ

25.10%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 96 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2025-24200

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N	3.9	3.6	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-02-11
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None
6.1	MEDIUM	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N	0.9	5.2	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-03-20
Attack Vector: Physical Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: None
4.6	MEDIUM	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	0.9	3.6	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-02-11
Attack Vector: Physical Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None
6.1	MEDIUM	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N	0.9	5.2	NIST	2025-02-13
Attack Vector: Physical Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: None

CWE ids for CVE-2025-24200

CWE-863 Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
Assigned by:
- 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
- nvd@nist.gov (Primary)

References for CVE-2025-24200

http://seclists.org/fulldisclosure/2025/Feb/8

Mailing List;Third Party Advisory
https://support.apple.com/en-us/122174

About the security content of iOS 18.3.1 and iPadOS 18.3.1 - Apple Support
Release Notes;Vendor Advisory
https://support.apple.com/en-us/122173

Release Notes;Vendor Advisory
http://seclists.org/fulldisclosure/2025/Feb/7

Mailing List;Third Party Advisory