CVE-2025-24201 : An out-of-bounds write issue was addressed with improved checks to prevent unaut

An out-of-bounds write issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in visionOS 2.3.2, iOS 18.3.2 and iPadOS 18.3.2, macOS Sequoia 15.3.2, Safari 18.3.1, watchOS 11.4, iPadOS 17.7.6, iOS 16.7.11 and iPadOS 16.7.11, iOS 15.8.4 and iPadOS 15.8.4. Maliciously crafted web content may be able to break out of Web Content sandbox. This is a supplementary fix for an attack that was blocked in iOS 17.2. (Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 17.2.).

Published 2025-03-11 18:07:22

Updated 2025-04-17 18:58:55

Source Apple Inc.

View at NVD, CVE.org

Products affected by CVE-2025-24201

Apple » Safari
Versions before (<) 18.3.1
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
Matching versions
Apple » Iphone Os
Versions from including (>=) 16.7 and before (<) 16.7.11
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Matching versions
Apple » Iphone Os
Versions before (<) 18.3.2
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Matching versions
Apple » Iphone Os
Versions from including (>=) 15.8 and before (<) 15.8.4
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Matching versions
Apple » Watchos » Version: 11.4
cpe:2.3:o:apple:watchos:11.4:*:*:*:*:*:*:*
Matching versions
Apple » Macos
Versions before (<) 15.3.2
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Matching versions
Apple » Ipados
Versions before (<) 18.3.2
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Matching versions
Apple » Ipados
Versions from including (>=) 16.7 and before (<) 16.7.11
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Matching versions
Apple » Ipados
Versions from including (>=) 15.8 and before (<) 15.8.4
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Matching versions
Apple » Visionos
Versions before (<) 2.3.2
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
Matching versions

CVE-2025-24201 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability

CISA required action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CISA description:

Apple iOS, iPadOS, macOS, and other Apple products contain an out-of-bounds write vulnerability in WebKit that may allow maliciously crafted web content to break out of Web Content sandbox. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and no

Notes:

https://support.apple.com/en-us/122281 ; https://support.apple.com/en-us/122283 ; https://support.apple.com/en-us/122284 ; https://support.apple.com/en-us/122285 ; ; https://nvd.nist.gov/vuln/detail/CVE-2025-24201

Added on 2025-03-13 Action due date 2025-04-03

Exploit prediction scoring system (EPSS) score for CVE-2025-24201

EPSS FAQ

0.09%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 27 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2025-24201

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.1	HIGH	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H	1.2	5.9	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-03-12
Attack Vector: Network Attack Complexity: High Privileges Required: Low User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High
8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	2.8	5.9	NIST	2025-03-14
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2025-24201

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.
Assigned by:
- 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
- nvd@nist.gov (Primary)

References for CVE-2025-24201

https://support.apple.com/en-us/122285

About the security content of Safari 18.3.1 - Apple Support
Release Notes;Vendor Advisory
http://seclists.org/fulldisclosure/2025/Mar/2

Mailing List;Third Party Advisory
https://support.apple.com/en-us/122345

Release Notes;Vendor Advisory
http://seclists.org/fulldisclosure/2025/Apr/16

Mailing List;Third Party Advisory
https://support.apple.com/en-us/122281

About the security content of iOS 18.3.2 and iPadOS 18.3.2 - Apple Support
Release Notes;Vendor Advisory
http://seclists.org/fulldisclosure/2025/Mar/4

Mailing List;Third Party Advisory
https://support.apple.com/en-us/122284

Release Notes;Vendor Advisory
https://support.apple.com/en-us/122346

Release Notes;Vendor Advisory
http://seclists.org/fulldisclosure/2025/Mar/3

Mailing List;Third Party Advisory
https://support.apple.com/en-us/122376

Release Notes;Vendor Advisory

CVEs referencing this url
https://support.apple.com/en-us/122372

Release Notes;Vendor Advisory

CVEs referencing this url
http://seclists.org/fulldisclosure/2025/Mar/5

Mailing List;Third Party Advisory
https://support.apple.com/en-us/122283

About the security content of macOS Sequoia 15.3.2 - Apple Support
Release Notes;Vendor Advisory