- Description
- This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4, iOS 18.3 and iPadOS 18.3. Restoring a maliciously crafted backup file may lead to modification of protected system files.
- Source
- product-security@apple.com
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
- Severity
- MEDIUM
- Hype score
- Not currently trending
CVE-2025-24104 This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4, iOS 18.3 and iPadOS 18.3. Restoring a maliciously crafted backup fi… https://t.co/hNXMiWHmB2
@CVEnew
27 Jan 2025
1301 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-24104 ⏳
@minacris_
22 Jan 2025
2577 Impressions
1 Retweet
7 Likes
1 Bookmark
4 Replies
0 Quotes
CVE-2025-24104 ⏳
@hichem_ifpdz
22 Jan 2025
11317 Impressions
4 Retweets
116 Likes
21 Bookmarks
16 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27995710-C1F5-4919-8168-E2B59D7F698C",
"versionEndExcluding": "17.7.4"
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD29C5E9-9427-4C41-873F-C29493B892E4",
"versionEndExcluding": "18.3",
"versionStartIncluding": "18.0"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "71A94ACA-8143-475F-8A89-8020B86CE80B",
"versionEndExcluding": "18.3"
}
],
"operator": "OR"
}
]
}
]