CVE-2025-24118
Published Jan 27, 2025
Last updated 4 days ago
AI description
CVE-2025-24118 is a vulnerability found in the XNU kernel, the kernel used in Apple's operating systems such as macOS, iOS, and iPadOS. The issue stems from a race condition, meaning multiple processes or threads access and manipulate shared data simultaneously, leading to unintended and potentially harmful outcomes. The vulnerability was addressed by improving memory handling within the kernel. This flaw was patched in updates for several of Apple's operating systems, including macOS Sequoia 15.3, iPadOS 17.7.4, and later versions of other operating systems. The vulnerability was discovered by Joseph Ravichandran of MIT CSAIL. While the specifics of the vulnerability's impact haven't been detailed publicly beyond the potential for an application to crash the system or write to kernel memory, the updates provided by Apple resolve the underlying memory handling issue.
- Description
- The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3. An app may be able to cause unexpected system termination or write kernel memory.
- Source
- product-security@apple.com
- NVD status
- Awaiting Analysis
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-787
- Hype score
- Not currently trending
#Vulnerability #CVE202524118 PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8) https://t.co/dQgkHNwh7S
@Komodosec
12 Feb 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
برای کرنل و هسته سیستم عامل macOS اپل آسیب پذیری جدیدی با کد شناسایی CVE-2025-24118 و از نوع privilege escalation منتشر شده است.poc و اکسپلویت مربوط به این آسیب پذیری منتشر شده است. برای پیشگیری و مقابله با این تهدید به روز رسانی لازم را اعمال نمایید. https://t.co/Poz3aKYxT1 htt
@AmirHossein_sec
7 Feb 2025
33 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
Apple's macOS Vulnerability (CVE-2025-24118) Exposes Users to Privilege Escalation Attacks https://t.co/Tg0YXyMFyR
@revers3shell
6 Feb 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
“Apple macOS” kernelində kritik boşluq (CVE-2025-24118) aşkarlanıb #ETX #certaz #cybersecurity #kibertəhlükəsizlik #xəbərdarlıq https://t.co/QubQFqWrZB
@CERTAzerbaijan
5 Feb 2025
45 Impressions
1 Retweet
0 Likes
0 Bookmarks
1 Reply
0 Quotes
[1day1line] CVE-2025-24118: Obtaining arbitrary credentials due to race conditions in macOS https://t.co/A3RapTFhbS Hello, This is OUYA77. I'd like to introduce a vulnerability in macOS kernel that allows for arbitrary credential acquisition and unexpected system termination… h
@hackyboiz
5 Feb 2025
1716 Impressions
8 Retweets
34 Likes
10 Bookmarks
0 Replies
0 Quotes
Threat Alert: PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8) CVE-2025-24118 Severity: 🔴 High Maturity: 🧨 Trending Learn more: https://t.co/s4ZbnMOlqO #CyberSecurity #ThreatIntel #InfoSec
@fletch_ai
4 Feb 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A critical race condition vulnerability (CVE-2025-24118) in Apple’s macOS kernel could allow privilege escalation and memory corruption. Patched in latest updates. 📱💻 #AppleSecurity #KernelExploitation #USA link: https://t.co/0mqx68sGOM https://t.co/Jd6TsWTZus
@TweetThreatNews
3 Feb 2025
46 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
#exploit 1. CVE-2024-57514: XSS in TP-Link A20 v3 Router - https://t.co/HA0f0sLlHa 2. CVE-2025-21293: AD Domain Services EoP - https://t.co/AwLqPE5vYQ 3. CVE-2025-24118: macOS XNU kernel vulnerability - https://t.co/igtmkN1Gac 4. CVE-2024-8381: SpiderMonkey Interpreter Type… h
@ksg93rd
3 Feb 2025
244 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2024-56529 2 - CVE-2025-0950 3 - CVE-2025-24118 4 - CVE-2025-21293 5 - CVE-2024-43707 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
3 Feb 2025
21 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8) https://t.co/wPmAbRF1vl
@samilaiho
3 Feb 2025
849 Impressions
3 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
macOS カーネルの脆弱性のPoC エクスプロイトが公開(CVE-2025-24118 )|セキュリティニュースのセキュリティ対策Lab https://t.co/XEbBC9yfbq
@Luke06121
3 Feb 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚡PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8). #CyberNews https://t.co/lLc0AV8O2T
@dilagrafie
3 Feb 2025
135 Impressions
1 Retweet
4 Likes
0 Bookmarks
0 Replies
0 Quotes
PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8) - https://t.co/RY0iOoZoMw
@moton
3 Feb 2025
100 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8) https://t.co/GAKpmyt7FQ
@Dinosn
3 Feb 2025
2738 Impressions
11 Retweets
34 Likes
14 Bookmarks
0 Replies
0 Quotes
macOSのカーネル脆弱性CVE-2025-24118に対応するPoC(攻撃の概念実証コード)が公開された。CVSSスコア9.8で、競合状態に起因。ローカル攻撃者が権限昇格可能。 https://t.co/UrRXY3e5rg
@__kokumoto
3 Feb 2025
2504 Impressions
8 Retweets
38 Likes
9 Bookmarks
0 Replies
0 Quotes
🗣 PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8) https://t.co/J7jMbFCcmo
@fridaysecurity
3 Feb 2025
145 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8) Uncover the details of CVE-2025-24118, a critical vulnerability in #Apple's #MacOS. Understand the risks and the patched versions https://t.co/IqAu1aHQc2
@the_yellow_fall
3 Feb 2025
383 Impressions
1 Retweet
6 Likes
1 Bookmark
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2024-8381 2 - CVE-2024-10487 3 - CVE-2025-24118 4 - CVE-2025-24162 5 - CVE-2025-0282 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
2 Feb 2025
259 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2025-21298 2 - CVE-2025-24118 3 - CVE-2024-57727 4 - CVE-2025-24883 5 - CVE-2025-21293 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
1 Feb 2025
120 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
GitHub - jprx/CVE-2025-24118: An XNU kernel race condition bug - https://t.co/5tbi3VE7EB
@piedpiper1616
1 Feb 2025
1599 Impressions
10 Retweets
25 Likes
12 Bookmarks
0 Replies
0 Quotes
CVE-2025-24118 is an absolutely crazy race condition, found in the macOS XNU kernel. Safe memory reclamation, read-only objects, memcpy implementation details, and a race condition. Oh my!
@byt3n33dl3
31 Jan 2025
77 Impressions
0 Retweets
1 Like
0 Bookmarks
1 Reply
1 Quote
CVE-2025-24118 is an absolutely crazy race condition I found in the macOS / XNU kernel. Safe memory reclamation, read-only objects, memcpy implementation details, and a race condition- oh my! https://t.co/K7IHul3ZvD
@0xjprx
31 Jan 2025
27562 Impressions
63 Retweets
258 Likes
99 Bookmarks
4 Replies
7 Quotes
New post from https://t.co/uXvPWJy6tj (CVE-2025-24118 | Apple iPadOS Kernel Memory memory corruption (Nessus ID 214661)) has been published on https://t.co/95d2HipFUj
@WolfgangSesin
28 Jan 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New post from https://t.co/uXvPWJy6tj (CVE-2025-24118 | Apple macOS Kernel Memory memory corruption (Nessus ID 214661)) has been published on https://t.co/esgaEqv4yw
@WolfgangSesin
28 Jan 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-24118 The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3. An app may be able to cause unex… https://t.co/7dvZaRo9G7
@CVEnew
27 Jan 2025
294 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes