AI description
CVE-2025-24139 is a vulnerability that affects certain versions of macOS. It arises from insufficient checks during the parsing of maliciously crafted files. The vulnerability can be triggered when a user opens a maliciously crafted file, potentially leading to an unexpected termination of the affected application. Apple has addressed this issue by releasing patches in macOS Ventura 13.7.3, macOS Sequoia 15.3, and macOS Sonoma 14.7.3, which include improved checks to prevent such crashes.
- Description
- The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS Sequoia 15.3, macOS Sonoma 14.7.3. Parsing a maliciously crafted file may lead to an unexpected app termination.
- Source
- product-security@apple.com
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
- nvd@nist.gov
- NVD-CWE-noinfo
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-787
- Hype score
- Not currently trending
Two vulnerabilities fixed in macOS Sequoia 15.3: https://t.co/OhvC3hMykk sips: CVE-2025-24185: RCE CVE-2025-24139: info disc
@hosselot
28 Mar 2025
1543 Impressions
6 Retweets
33 Likes
7 Bookmarks
0 Replies
0 Quotes
🔴 #macOS, File Parsing Vulnerability, #CVE-2025-24139 Critical https://t.co/bOpEu6np3H
@dailycve
4 Mar 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-24139 The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS Sequoia 15.3, macOS Sonoma 14.7.3. Parsing a maliciously crafted file… https://t.co/ewzJuHqdrA
@CVEnew
27 Jan 2025
339 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A12642CB-69CC-4C6E-A2C2-CA8AE736EE88",
"versionEndExcluding": "13.7.3"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C523C7E-B1CF-454B-8AFD-B462C5120D9E",
"versionEndExcluding": "14.7.3",
"versionStartIncluding": "14.0"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "33FE4A81-3E35-4934-ABBB-4531E8E249AF",
"versionEndExcluding": "15.3",
"versionStartIncluding": "15.0"
}
],
"operator": "OR"
}
]
}
]