CVE-2025-31241

A double free issue was addressed with improved memory management. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. A remote attacker may cause an unexpected app termination.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://support.apple.com/en-us/122404
https://support.apple.com/en-us/122405
https://support.apple.com/en-us/122716
https://support.apple.com/en-us/122717
https://support.apple.com/en-us/122718
https://support.apple.com/en-us/122720
https://support.apple.com/en-us/122721
https://support.apple.com/en-us/122722

Configurations

No configuration.

History

13 May 2025, 16:15

Type	Values Removed	Values Added
CWE		CWE-415
Summary		(es) Se solucionó un problema de doble liberación mejorando la gestión de memoria. Este problema se solucionó en watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 y iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5 y macOS Ventura 13.7.6. Un atacante remoto podría provocar el cierre inesperado de la aplicación.
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.3

12 May 2025, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-12 22:15

Updated : 2025-05-13 19:35

NVD link : CVE-2025-31241

Mitre link : CVE-2025-31241

CVE.ORG link : CVE-2025-31241

JSON object : View

Products Affected

No product.

CWE

CWE-415

Double Free

{"id": "CVE-2025-31241", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2025-05-12T22:15:24.460", "references": [{"url": "https://support.apple.com/en-us/122404", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122405", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122716", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122717", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122718", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122720", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122721", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122722", "source": "product-security@apple.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-415"}]}], "descriptions": [{"lang": "en", "value": "A double free issue was addressed with improved memory management. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. A remote attacker may cause an unexpected app termination."}, {"lang": "es", "value": "Se solucion\u00f3 un problema de doble liberaci\u00f3n mejorando la gesti\u00f3n de memoria. Este problema se solucion\u00f3 en watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 y iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5 y macOS Ventura 13.7.6. Un atacante remoto podr\u00eda provocar el cierre inesperado de la aplicaci\u00f3n."}], "lastModified": "2025-05-13T19:35:25.503", "sourceIdentifier": "product-security@apple.com"}