CVE-2025-24177

Denial of Service via Null Pointer Dereference in Apple iOS, iPadOS and macOS

Description

A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.6, macOS Sequoia 15.3, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An attacker on the local network may be able to cause a denial-of-service.

INFO

Published Date :

2025-01-27T21:46:17.273Z

Last Modified :

2026-04-02T18:20:38.343Z

Source :

apple

AFFECTED PRODUCTS

The following products are affected by CVE-2025-24177 vulnerability.

Vendors	Products
Apple	Ipados Iphone Os Macos

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-24177.

URL	Resource
http://seclists.org/fulldisclosure/2025/Jan/13
http://seclists.org/fulldisclosure/2025/Jan/15
https://support.apple.com/en-us/122066
https://support.apple.com/en-us/122068
https://support.apple.com/en-us/122372
https://support.apple.com/en-us/122374
https://support.apple.com/en-us/122375

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact