CVE-2025-24091

Description

An app could impersonate system notifications. Sensitive notifications now require restricted entitlements. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.3. An app may be able to cause a denial-of-service.

CVSS 3.1 Score

Weakness

• CWE-290

References

• Apple Security Advisory
• NVD Entry
• https://support.apple.com/en-us/121838 (Vendor Advisory)