CVE-2025-24221

HIGH | Platform: iPadOS | Changelog

CVE Details

Description

This issue was addressed with improved data access restriction. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, visionOS 2.4. Sensitive keychain data may be accessible from an iOS backup.

CVSS 3.1 Score

Metric	Value
Base Score	7.5 (HIGH)
Vector	`CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N`

Weakness

CWE-863

References

Apple Security Advisory
NVD Entry
https://support.apple.com/en-us/122371 (Vendor Advisory)
https://support.apple.com/en-us/122378 (Vendor Advisory)
http://seclists.org/fulldisclosure/2025/Apr/12
http://seclists.org/fulldisclosure/2025/Apr/4
http://seclists.org/fulldisclosure/2025/Apr/5