AI description
CVE-2025-24201 is a zero-day vulnerability found in Apple's WebKit browser engine. This vulnerability allows attackers to bypass the Web Content sandbox using maliciously crafted web content. It affects various Apple devices and operating systems, including iOS, macOS, iPadOS, visionOS, and Safari, as well as Linux and Windows systems where WebKit is utilized. The vulnerability is an out-of-bounds write issue, and Apple has addressed it with improved checks in updates iOS 18.3.2, iPadOS 18.3.2, macOS Sequoia 15.3.2, visionOS 2.3.2, and Safari 18.3.1. This zero-day vulnerability was reportedly exploited in highly sophisticated attacks targeting specific individuals before the release of iOS 17.2, which contained a partial mitigation. While the attacks were not widespread, Apple urges users to install the latest security updates to prevent further exploitation attempts. The vulnerability was discovered by Bill Marczak of The Citizen Lab at the University of Toronto. It affects a wide range of Apple devices, including iPhone XS and later, several iPad models, Macs running macOS Sequoia, and Apple Vision Pro.
- Description
- An out-of-bounds write issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in visionOS 2.3.2, iOS 18.3.2 and iPadOS 18.3.2, macOS Sequoia 15.3.2, Safari 18.3.1. Maliciously crafted web content may be able to break out of Web Content sandbox. This is a supplementary fix for an attack that was blocked in iOS 17.2. (Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 17.2.).
- Source
- product-security@apple.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability
- Exploit added on
- Mar 13, 2025
- Exploit action due
- Apr 3, 2025
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
Achtung Apple User: Wichtiges Sicherheitsupdate. Eine neu entdeckte Sicherheitslücke, CVE-2025-24201, könnte Ihre persönlichen Daten für Hacker angreifbar machen. Die gute Nachricht? Apple hat iOS 18.3.2 und iPadOS 18.3.2 veröffentlicht, um das Problem zu beheben. https://t.co
@RailDesignerAI
15 Mar 2025
115 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-24201
@transilienceai
15 Mar 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨 Apple just patched a zero-day under active attack! CVE-2025-24201 lets hackers escape the WebKit sandbox—Apple calls the exploit “extremely sophisticated.” Targeted? Unknown Duration? Unknown But if you use an iPhone, Mac, or Vision Pro—update NOW. https://t.co/gz9lFXmtjC
@achi_tech
15 Mar 2025
72 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨🚨🚨THIS IS NOT A DRILL. Please update your iphone! 🚨🚨🚨Here’s a five-step, no-nonsense guide to crush that iPhone vulnerability (CVE-2025-24201) with iOS 18.3.2 on March 14, 2025. https://t.co/cIKbTeDS2T
@TrackerPayton
15 Mar 2025
1022 Impressions
1 Retweet
3 Likes
0 Bookmarks
0 Replies
1 Quote
Actively exploited CVE : CVE-2025-24201
@transilienceai
15 Mar 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
#hack #snaphack📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin💵฿#easymoney #snaphacking Apple just patched a zero-day under active attack! CVE-2025-24201 let hackers escape the WebKit 🦸🏻♂sandbox-Apple calls the exploit extremely sophisticated‼‼ http
@cyber_expert8
14 Mar 2025
55 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ℹ️ Alerte de sécurité critique : Découvrez les multiples vulnérabilités récentes dans Microsoft Edge, dont l'exploitation active de CVE-2025-24201. Protégez-vous dès maintenant ! #Cybersecurite #Vulnérabilité #MicrosoftEdge 👉 https://t.co/kWkSJ8hhX6
@CyberAlertFr
14 Mar 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Dringende Warnung für iPhone-Nutzer! Apple entdeckte die kritische Sicherheitslücke CVE-2025-24201, die Hacker für Datenzugriff nutzen können. Betroffen sind Safari und andere Browser. iPhone XS und neuere Modelle sollten sofort auf iOS 18.3.2 aktualisieren! #apple https://t.co
@MediaSWald
14 Mar 2025
138 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA urges iPhone users to update to iOS 18.3.2 by Apr 3rd due to exploited WebKit vulnerability (CVE-2025-24201). The flaw affects Safari & other apps. Update now! https://t.co/6Z1fJOq4Uh
@Jfreeg_
14 Mar 2025
148 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Apple has released emergency updates for iPhones and iPads to patch a critical vulnerability (CVE-2025-24201) in WebKit. If you own an iPhone XS or newer, or supported iPads, update your device immediately to protect your personal information from potential threats. Stay safe! ht
@neoupdate_
14 Mar 2025
20 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
⚠️ Vulnerability Alert: Google, Apple, and Microsoft Zero-Day Flaw 📅 Timeline: Disclosure: 2025-03-11, Patch: 2025-03-13 🆔cveId: CVE-2025-24201 📊baseScore: 7.1 📏cvssMetrics: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H cvssSeverity: High 🟠 📈 EPSS Score: 43.45%… https:/
@syedaquib77
14 Mar 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 iPhone kullanıcıları için Acil Uyarı: Cihazınız tehlikede olabilir! 🔍 Apple, 1.5 milyar iPhone'u tehdit eden kritik bir güvenlik açığını tespit etti. Hackerlar, bu açığı kullanarak cihazlarınıza sızabiliyor! ⚠️ CVE-2025-24201 kod adlı bu açık, Safari ve diğer tarayıcılarda…
@BOLDmedyaTV
14 Mar 2025
346 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 iPhone kullanıcıları için Acil Uyarı: Cihazınız tehlikede olabilir! 🔍 Apple, 1.5 milyar iPhone'u tehdit eden kritik bir güvenlik açığını tespit etti. Hackerlar, bu açığı kullanarak cihazlarınıza sızabiliyor! ⚠️ CVE-2025-24201 kod adlı bu açık, Safari ve diğer tarayıcılarda…
@BOLDmedya
14 Mar 2025
596 Impressions
4 Retweets
5 Likes
0 Bookmarks
0 Replies
0 Quotes
Emergency patches released by Google, Apple, and Microsoft for zero-day vulnerability CVE-2025-24201, affecting popular browsers and GPU on Mac. Update systems before April 3, 2025! 🚨 #ZeroDay #CISA #USA link: https://t.co/H9eR2bxRlE https://t.co/hTZnV3FQSE
@TweetThreatNews
14 Mar 2025
74 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-24201
@transilienceai
14 Mar 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨#hack #snaphack📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin💵฿#easymoney #snaphacking Apple just patched a zero-day under active attack! CVE-2025-24201 let hackers escape the WebKit 🦸🏻♂sandbox-Apple calls the exploit extremely sophisticated‼‼ ht
@Alexmorgan800
13 Mar 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️ We added Juniper Junos OS & Apple vulnerabilities, CVE-2025-21590 & CVE-2025-24201, to our Known Exploited Vulnerabilities Catalog. Visit https://t.co/myxOwap1Tf & apply mitigations to protect your org from cyberattacks. #Cybersecurity #InfoSec https://t.co/mqZqJY
@CISACyber
13 Mar 2025
5015 Impressions
20 Retweets
38 Likes
5 Bookmarks
4 Replies
2 Quotes
Apple призывает обновиться всех до iOS 18.3.2, так как там поправили важную уязвимость в движке WebKit. Из-за CVE-2025-24201 злоумышленники могли создавать вредоносный веб-контент, который мог выбираться за пределы песочницы браузера. Благодаря этому у хакеров была возможность…
@zavtracast
13 Mar 2025
879 Impressions
0 Retweets
2 Likes
0 Bookmarks
1 Reply
0 Quotes
Экс-коллега прислал новость, что прилетевшее в iOS 18.3.2 и iPadOS 18.3.2 исправление CVE-2025-24201 — это фикс уязвимости 0-day, которую эксплуатируют в таргетированных атаках. Apple информацию не раскрывает, но обновить айфончики и айпадики не мешает https://t.co/IDp1XmbOmT
@moiseenko_tech
13 Mar 2025
133 Impressions
0 Retweets
6 Likes
0 Bookmarks
0 Replies
0 Quotes
Appleが、高度な攻撃で使用されたWebKitのゼロデイ脆弱性を修正する緊急セキュリティアップデートをリリースした。CVE-2025-24201として追跡されている脆弱性で、迅速なアップデートが推奨される。 #米国ニュース https://t.co/3PnmWGFRgl
@NaoyukiszB
13 Mar 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-24201 Zeroday Impacts Apple Products #CVE-2025-24201 #Apple #Zeroday https://t.co/7yyrJ17fOR
@pravin_karthik
13 Mar 2025
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple、極めて高度な攻撃に悪用された脆弱性を修正(CVE-2025-24201) #セキュリティ対策Lab #セキュリティ #Security https://t.co/hDFZRCzqUU
@securityLab_jp
13 Mar 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple Fixes WebKit Zero-Day Exploited in Targeted Attacks Apple patched CVE-2025-24201, a WebKit zero-day allowing attackers to bypass security & execute malicious code via rogue web content. This marks Apple’s third exploited zero-day fix in 2025—update iOS, macOS, Safari &
@dCypherIO
12 Mar 2025
50 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple releases critical security update for iPhones and iPads to patch zero-day vulnerability CVE-2025-24201 in WebKit, which powers Safari and all iOS browsers, amid reports of sophisticated active exploitation. https://t.co/Gt8NTZGFpk #ZeroDay #Apple #iPad
@CandidTodayTech
12 Mar 2025
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple released emergency updates to address the zero-day vulnerability CVE-2025-24201 in WebKit, exploited in sophisticated attacks against targeted individuals on versions of iOS prior to 17.2. The fix, included in iOS 18.3.2, iPadOS 18.3. https://t.co/3AqzZDK0iY
@securityRSS
12 Mar 2025
73 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 قامت Apple للتو بتصحيح ثغرة zero day تحت هجوم نشط! يتيح CVE-2025-24201 للمتسللين الهروب من صندوق رمل WebKit - تصف Apple الاستغلال بأنه "متطور للغاية". إذا كنت تستخدم iPhone أو Mac أو Vision Pro - فقم بالتحديث الآن. #تقنية https://t.co/4okafKnng9
@Infoandtech3
12 Mar 2025
56 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Vulnérabilité dans les produits Apple (12 mars 2025) Une vulnérabilité a été découverte dans les produits Apple. Elle permet à un attaquant de provoquer un contournement de la politique de sécurité. Apple indique que la vulnérabilité CVE-2025-24201 est https://t.co/DyzGdo6F7y
@ONE2NET
12 Mar 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple fixes WebKit zero-day exploited in ‘extremely sophisticated’ attacks. Apple has released emergency security updates to patch a zero-day bug tracked as CVE-2025-24201 the company describes as exploited in "extremely sophisticated" attacks. https://t.co/zLZ4Af27B5 https://t.c
@riskigy
12 Mar 2025
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨#hack #snaphack📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin💵฿#easymoney #snaphacking Apple just patched a zero-day under active attack! CVE-2025-24201 let hackers escape the WebKit 🦸🏻♂sandbox-Apple calls the exploit extremely sophisticated‼‼ ht
@georgehackwiser
12 Mar 2025
555 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
‼️Ārkārtas drošības atjauninājums novērš zero-day ievainojamību (CVE-2025-24201) Apple lietotajā WebKit tehnoloģijā, kura izmantota Apple Safari, Mail, App Store un daudzos citos programmatūras risinājumos. Aicinām nekavējoties uzstādīt atjauninājumus! https://t.co/7NHujMXfUX htt
@certlv
12 Mar 2025
1888 Impressions
9 Retweets
17 Likes
2 Bookmarks
0 Replies
0 Quotes
🚨 Apple just patched a zero-day under active attack! CVE-2025-24201 lets hackers escape the WebKit sandbox—Apple calls the exploit “extremely sophisticated.” Targeted? Unknown But if you use an iPhone, Mac, or Vision Pro—update NOW. 📲 Details: https://t.co/oaMXoCFK9G https:/
@dysafhackx
12 Mar 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🗞️ Apple Patches Critical WebKit Zero-Day Exploited in Sophisticated Attacks Apple just released a fix for a nasty WebKit zero-day (CVE-2025-24201) that’s been exploited in “extremely sophisticated” attacks targeting older iOS versions. Update your iPhone, iPad, Mac, and Vision
@gossy_84
12 Mar 2025
32 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple's Urgent Fix: Zero-Day Flaw Exploited in 'Extremely Sophisticated' Attacks. Apple has released emergency security updates to patch a critical zero-day vulnerability in WebKit, the browser engine powering Safari and other apps. The flaw, tracked as CVE-2025-24201, allowed…
@TechnicalNewsHQ
12 Mar 2025
233 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple's Urgent Fix: Zero-Day Flaw Exploited in 'Extremely Sophisticated' Attacks. Apple has released emergency security updates to patch a critical zero-day vulnerability in WebKit, the browser engine powering Safari and other apps. The flaw, tracked as CVE-2025-24201, allowed…
@TechnicalNewsHQ
12 Mar 2025
1783 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
1 Quote
Apple's Urgent Fix: Zero-Day Flaw Exploited in 'Extremely Sophisticated' Attacks. Apple has released emergency security updates to patch a critical zero-day vulnerability in WebKit, the browser engine powering Safari and other apps. The flaw, tracked as CVE-2025-24201, allowed…
@TechnicalNewsHQ
12 Mar 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple Issues Emergency Security Update! A new zero-day flaw (CVE-2025-24201) has been actively exploited in "extremely sophisticated" attacks. It affects WebKit, which allows malicious web content to escape the sandbox. Update now!
@INTERCERTUSA
12 Mar 2025
41 Impressions
0 Retweets
2 Likes
0 Bookmarks
1 Reply
0 Quotes
Apple vừa chính thức phát hành bản cập nhật iOS 18.3.2 (và iPadOS 18.3.2) nhằm khắc phục một lỗ hổng bảo mật nghiêm trọng trong WebKit. Được gán mã CVE-2025-24201, lỗ hổng này đã bị khai thác trên các phiên bản hệ điều hành di động cũ hơn cho phép kẻ tấn… https://t.co/eDqROVOA4e
@ChjyMigE
12 Mar 2025
646 Impressions
0 Retweets
5 Likes
0 Bookmarks
3 Replies
0 Quotes
🚨 عاجل: آبل تصدر تحديثًا أمنيًا طارئًا! ثغرة يوم صفر CVE-2025-24201 استُغلت في هجمات معقدة! 📱 الأجهزة المتأثرة: iPhone XS وأحدث، iPad، Mac، Apple Vision Pro. ⚠️ التحديث الآن ضروري لحماية بياناتك! 💬 هل تعتقد أن أمان آبل يتحسن؟ #Apple #iOS #أمان_سيبراني https://t.co/AInzXfmx0X
@mjbtechtips
12 Mar 2025
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple patches WebKit zero-day (CVE-2025-24201) exploited pre-iOS 17.2. Out-of-bounds flaw could escape sandbox. Fixed in iOS 18.3.2, macOS 15.3.2, Safari 18.3.1, visionOS 2.3.2. 3rd zero-day this year—update now! #Cybersecurity #Apple https://t.co/ITqtIWwQdN https://t.co/J0
@threatsbank
12 Mar 2025
111 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple corregge vulnerabilità zero-day in WebKit sfruttata in attacchi sofisticati Sicurezza Informatica, Apple, CVE-2025-24201, cybersecurity, exploit, iOS 18.3.2, macOS Sequoia 15.3.2, Safari 18.3.1, webkit, zero-day https://t.co/MSAPySGDrq https://t.co/wKSrOY2oYT
@matricedigitale
12 Mar 2025
129 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
“Apple released emergency software patches Tuesday that address a newly identified zero-day vulnerability in the company's WebKit web browser engine. Tracked as CVE-2025-24201, an attacker can potentially escape the constraints of Webkit's Web Content sandbox…”
@yungh0v
12 Mar 2025
130 Impressions
2 Retweets
4 Likes
0 Bookmarks
2 Replies
0 Quotes
Свежее обновление iOS и iPadOS 18.3.2 закрывают одну очень серьёзную уязвимость в WebKit (Bugzilla: 285858, CVE-2025-24201), которая эксплуатировалась с помощью вредоносного веб-контента и может выйти за рамки веб-контента в систему для захвата данных. https://t.co/IdiyYutmz3 htt
@aaplpro
12 Mar 2025
596 Impressions
0 Retweets
5 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨CVE Alert: Apple Out-of-bounds write Zero-day Vulnerability Exploited In The Wild 🚨 Vulnerability Details: CVE-2025-24201 Apple Out-of-bounds write Vulnerability Impact A Successful exploit could allows a remote attacker to compromise vulnerable system. Affected Products:…
@CyberxtronTech
12 Mar 2025
65 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨CVE Alert: Apple Out-of-bounds write Zero-day Vulnerability Exploited In The Wild 🚨 Vulnerability Details: CVE-2025-24201 Apple Out-of-bounds write Vulnerability Impact A Successful exploit could allows a remote attacker to compromise vulnerable system. Affected Products:…
@CyberxtronTech
12 Mar 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨CVE Alert: Apple Out-of-bounds write Vulnerability Exploited In The Wild 🚨 Vulnerability Details: CVE-2025-24201 Apple Out-of-bounds write Vulnerability Impact A Successful exploit could allows a remote attacker to compromise vulnerable system. Affected Products: Apple iOS
@CyberxtronTech
12 Mar 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 أصدرت شركة آبل تحديثًا أمنيًا لمعالجة ثغرة صفراء في محرك WebKit، تم استغلالها في هجمات مستهدفة معقدة. الثغرة تحمل معرف CVE-2025-24201، وتسمح للمهاجمين بإنشاء محتوى ويب خبيث يؤثر على نظام التشغيل. #الامن_السيبراني https://t.co/aoPowkFua8
@Cybercachear
12 Mar 2025
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Apple just patched a zero-day under active attack! CVE-2025-24201 lets hackers escape the WebKit sandbox—Apple calls the exploit “extremely sophisticated.” Targeted? Unknown Duration? Unknown But if you use an iPhone, Mac, or Vision Pro—update NOW. 📲 Details:… https://t.c
@TheHackersNews
12 Mar 2025
28408 Impressions
122 Retweets
263 Likes
37 Bookmarks
5 Replies
7 Quotes
"Apple、セキュリティ更新を実施 ~macOS Sequoia、Safari、visionOSにもアップデート/「CVE-2025-24201」を修正。特定の標的を狙った攻撃への対策を強化" - 窓の杜 #SmartNews https://t.co/dYBrIgn2RW
@htakeuchi1
12 Mar 2025
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple、セキュリティ更新を実施 ~macOS Sequoia、Safari、visionOSにもアップデート/「CVE-2025-24201」を修正。特定の標的を狙った攻撃への… https://t.co/qbNUWGlkWf https://t.co/kYeiK5TXVR
@madonomori
12 Mar 2025
4540 Impressions
14 Retweets
17 Likes
0 Bookmarks
1 Reply
1 Quote
AppleかWebKitにおけるゼロデイ脆弱性を緊急修正。「極めて高度な」攻撃で使用されたものとしている。CVE-2025-24201は境界外書き込みの脆弱性。iOS 17.2で対策された攻撃に対する補完的修正で、17.2より前のOSへの攻撃で使用されていた可能性がある。 https://t.co/vdcbgkPkfT
@__kokumoto
11 Mar 2025
979 Impressions
3 Retweets
8 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC8CB32A-507F-4526-9A68-9EA9AB85C646",
"versionEndExcluding": "18.3.1"
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55451F51-7F26-4638-9B29-E043181E948F",
"versionEndExcluding": "18.3.2"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "26C959CA-A2A5-4395-9767-7E39C8213F25",
"versionEndExcluding": "18.3.2"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BC6B27F0-BB95-4860-9C8E-937DBF0BF718",
"versionEndExcluding": "15.3.2"
},
{
"criteria": "cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "255ACD01-52C3-49B2-8641-A22E088D852E",
"versionEndExcluding": "2.3.2"
}
],
"operator": "OR"
}
]
}
]