{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-24210","assignerOrgId":"286789f9-fbc2-4510-9f9a-43facdede74c","state":"PUBLISHED","assignerShortName":"apple","dateReserved":"2025-01-17T00:00:45.001Z","datePublished":"2025-03-31T22:22:59.513Z","dateUpdated":"2026-04-02T18:13:32.997Z"},"containers":{"cna":{"problemTypes":[{"descriptions":[{"lang":"en","description":"Parsing an image may lead to disclosure of user information"}]}],"affected":[{"vendor":"Apple","product":"iOS and iPadOS","versions":[{"version":"0","status":"affected","lessThan":"18.4","versionType":"custom"}]},{"vendor":"Apple","product":"iPadOS","versions":[{"version":"0","status":"affected","lessThan":"17.7.6","versionType":"custom"}]},{"vendor":"Apple","product":"macOS","versions":[{"version":"0","status":"affected","lessThan":"13.7.5","versionType":"custom"},{"version":"0","status":"affected","lessThan":"14.7.5","versionType":"custom"},{"version":"0","status":"affected","lessThan":"15.4","versionType":"custom"}]},{"vendor":"Apple","product":"tvOS","versions":[{"version":"0","status":"affected","lessThan":"18.4","versionType":"custom"}]},{"vendor":"Apple","product":"visionOS","versions":[{"version":"0","status":"affected","lessThan":"2.4","versionType":"custom"}]},{"vendor":"Apple","product":"watchOS","versions":[{"version":"0","status":"affected","lessThan":"11.4","versionType":"custom"}]}],"descriptions":[{"lang":"en","value":"A logic error was addressed with improved error handling. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. Parsing an image may lead to disclosure of user information."}],"references":[{"url":"https://support.apple.com/en-us/122371"},{"url":"https://support.apple.com/en-us/122372"},{"url":"https://support.apple.com/en-us/122373"},{"url":"https://support.apple.com/en-us/122374"},{"url":"https://support.apple.com/en-us/122375"},{"url":"https://support.apple.com/en-us/122376"},{"url":"https://support.apple.com/en-us/122377"},{"url":"https://support.apple.com/en-us/122378"}],"providerMetadata":{"orgId":"286789f9-fbc2-4510-9f9a-43facdede74c","shortName":"apple","dateUpdated":"2026-04-02T18:13:32.997Z"}},"adp":[{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-783","lang":"en","description":"CWE-783 Operator Precedence Logic Error"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":5.5,"attackVector":"LOCAL","baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","integrityImpact":"NONE","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"NONE","privilegesRequired":"LOW","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2025-04-01T14:23:05.463704Z","id":"CVE-2025-24210","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-04-01T14:25:02.925Z"}},{"title":"CVE Program Container","references":[{"url":"http://seclists.org/fulldisclosure/2025/Apr/13"},{"url":"http://seclists.org/fulldisclosure/2025/Apr/10"},{"url":"http://seclists.org/fulldisclosure/2025/Apr/9"},{"url":"http://seclists.org/fulldisclosure/2025/Apr/8"},{"url":"http://seclists.org/fulldisclosure/2025/Apr/5"},{"url":"http://seclists.org/fulldisclosure/2025/Apr/4"},{"url":"http://seclists.org/fulldisclosure/2025/Apr/12"},{"url":"http://seclists.org/fulldisclosure/2025/Apr/11"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-03T21:08:13.262Z"}}]}}