What is the severity of CVE-2025-24179?

CVE-2025-24179 is considered a denial-of-service vulnerability due to a null pointer dereference.

How do I fix CVE-2025-24179?

To fix CVE-2025-24179, update your device to the latest version of iOS, iPadOS, visionOS, macOS Ventura, macOS Sonoma, macOS Sequoia, or tvOS as specified in Apple's updates.

Which devices are affected by CVE-2025-24179?

CVE-2025-24179 affects devices running iOS up to 18.3, iPadOS up to 18.3, visionOS up to 2.3, macOS Ventura up to 13.7.5, macOS Sonoma up to 14.7.5, macOS Sequoia up to 15.3, and tvOS up to 18.3.

What might an attacker be able to achieve with CVE-2025-24179?

An attacker exploiting CVE-2025-24179 could cause a denial-of-service condition on affected devices on the local network.

When was CVE-2025-24179 addressed by Apple?

CVE-2025-24179 was addressed with improved input validation in updates released with iOS 18.3, iPadOS 18.3, and other versions.

Vulnerability/
CVE-2025-24179

medium

5.7

CWE

476 20

27/1/2025

29/4/2025

30/4/2025

CVE-2025-24179: Null Pointer Dereference

First published: Mon Jan 27 2025(Updated: )

A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 18.3 and iPadOS 18.3, visionOS 2.3, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, macOS Sequoia 15.3, tvOS 18.3. An attacker on the local network may be able to cause a denial-of-service.

Credit: product-security@apple.com Uri Katz (Oligo Security) Mickey Jin @patch1t D4m0n Kirin @Pwnrin Bohdan Stasiuk @Bohdan_Stasiuk Minghao Lin @Y1nKoc Zhejiang Universitybabywu Zhejiang University Zhejiang UniversityXingwei Lin Zhejiang UniversityWang Yu CyberservalGoogle Threat Analysis Group Desmond Trend Micro Zero Day InitiativePwn2car & Rotiple (HyeongSeok Jang) Trend Micro Zero Day InitiativeCVE-2025-24085 Matej Moravec @MacejkoMoravec Arsenii Kostromin (0x3c3e) Joshua Jones DongJun Kim @smlijun JongSeong Kim in Enki WhiteHat @nevul37 Joseph Ravichandran @0xjprx MIT CSAILan anonymous researcher pattern-f @pattern_F_ Michael (Biscuit) Thomas @social.lol) @biscuit 云散 Pedro Tôrres @t0rr3sp3dr0 Josh Parnham @joshparnham 神罚 @Pwnrin @RenwaX23 Michael DePlante @izobashi Trend Micro Zero Day InitiativeZhongquan Li @Guluisacat Hossein Lotfi @hosselot Trend Micro Zero Day InitiativeRodolphe BRUNETTI @eisw0lf Lupus NovaYann GASCUEL Alter SolutionsAdam M. Q1IQ @q1iqF NUS CuriOSityP1umer @p1umer Imperial Global Singaporelinjy HKUS3Labchluo WHUSecLabJohan Carlsson (joaxcar) PixiePoint Security Abhay Kailasia @abhay_kailasia CGuilherme Rambo Best Buddy AppsIvan Fratric Google Project ZeroHichem Maloufi Hakim Boukhadra mastersplinter Wojciech Regula SecuRingClaudio Bozzato Cisco TalosFrancesco Benvenuto Cisco TalosBohdan Stasiuk @bohdan_stasiuk Yutong Xiu Denis Tokarev @illusionofcha0s Jonathan Bar Or @yo_yo_yo_jbo Microsoft YingQi Shi @Mas0nShi DBAppSecurity's WeBin labMinghao Lin @Y1nKoc Stephan Casas Csaba Fitzl @theevilbit KandjiGergely Kalman @gergely_kalman CVE-2024-9681 Pietro Francesco Tirenna ShielderDavide Silvetti ShielderAbdel Adim Oisfi ShielderManuel Fernandez (Stackhopper Security) LFY @secsys Fudan UniversityMurray Mike Trend Micro Zero Day InitiativeAnonymous Trend Micro Zero Day InitiativeABC Research s.r.o. Dave G. Michael (Biscuit) Thomas - @social.lol @biscuit Ian Beer Google Project ZeroKenneth Chew Paweł Płatek (Trail BitsCVE-2025-27113 CVE-2024-56171 风沐云烟 @binary_fmyy SupernetworksMinghao Lin @Y1nKoc SupernetworksAlex Radocea SupernetworksDave G. SupernetworksPwn2car Noah Gregory (wts.dev) Bing Shi Alibaba GroupWenchao Li Alibaba GroupXiaolong Bai Alibaba GroupLuyi Xing Indiana University BloomingtonHalle Winkler Politepix theoffcuts.org Dolf Hoegaerts Andrew James Gonzalez Junsung <3 Trend Micro Zero Day InitiativeRichard Hyunho Im with routezero.security @richeeta zbleet QICsaba Fitzl @theevilbit OffSec风沐云烟 (binary_fmyy) DBAppSecurity's WeBin labMinghao Lin @Y1nKoc DBAppSecurity's WeBin labMickey Jin @patch1t KandjiAndreas Hegenberg (folivora.AI GmbH) Nolan Astrein KandjiRon Masas BREAKPOINTLehan Dilusha Sri Lanka @zorrosign Jimmy Jax Reissner Apple Paul Bakker ParagonERPGary Kwong rheza @ginggilBesel Francisco Alonso @revskills Lukas Bernhard Tashita Software Security Xiangwei Zhang Tencent Security YUNDING LABBrendon Tiszka Google Project ZeroGoogle V8 Security Team

Affected Software	Affected Version	How to fix
Apple iOS and iPadOS	<18.3
Apple iOS, iPadOS, and macOS	<18.3
visionOS	<2.3
macOS Ventura	<13.7.5
Apple iOS, iPadOS, and macOS	<17.7.6
Apple macOS	<14.7.5
macOS	<15.3
tvOS	<18.3
Apple iOS, iPadOS, and macOS	<17.7.6
Apple iOS, iPadOS, and macOS	>=18.0<18.3
iPhone OS	<18.3
macOS	<13.7.5
macOS	>=14.0<14.7.5
macOS	>=15.0<15.3
tvOS	<18.3
visionOS	<2.3
macOS	<15.3	15.3
tvOS	<18.3	18.3
visionOS	<2.3	2.3
Apple iOS and iPadOS	<18.3	18.3
Apple iOS, iPadOS, and macOS	<18.3	18.3
Apple iOS, iPadOS, and macOS	<17.7.6	17.7.6
macOS Ventura	<13.7.5	13.7.5
Apple macOS	<14.7.5	14.7.5

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/122073 (Advisory)
https://support.apple.com/en-us/122072 (Advisory)
https://support.apple.com/en-us/122068 (Advisory)
https://support.apple.com/en-us/122372 (Advisory)
https://support.apple.com/en-us/122374 (Advisory)
https://support.apple.com/en-us/122066 (Advisory)
https://support.apple.com/en-us/122375 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2025-24126
CVE-2025-24129
CVE-2025-24131
CVE-2025-24177
CVE-2025-24179
CVE-2025-24137
CVE-2025-24087
CVE-2025-24112
CVE-2025-24100
CVE-2025-24109
CVE-2025-24114
CVE-2025-24121
CVE-2025-24122
CVE-2025-24127
CVE-2025-24106
CVE-2025-24160
CVE-2025-24161
CVE-2025-24163
CVE-2025-24123
CVE-2025-24124
CVE-2025-24085
CVE-2025-24102
CVE-2025-24134
CVE-2025-24140
CVE-2025-24174
CVE-2025-24086
CVE-2025-24118
CVE-2025-24107
CVE-2025-24159
CVE-2025-24094
CVE-2025-24115
CVE-2025-24116
CVE-2025-24117
CVE-2025-24136
CVE-2025-24101
CVE-2025-24096
CVE-2025-24099
CVE-2025-24130
CVE-2025-24169
CVE-2025-24146
CVE-2025-24128
CVE-2025-24113
CVE-2025-24149
CVE-2025-24103
CVE-2025-24108
CVE-2025-24185
CVE-2025-24139
CVE-2025-24151
CVE-2025-24152
CVE-2025-24153
CVE-2025-24138
CVE-2025-24176
CVE-2025-24135
CVE-2025-24145
CVE-2025-24092
CVE-2025-24154
CVE-2025-24143
CVE-2025-24158
CVE-2025-24162
CVE-2025-24150
CVE-2025-24120
CVE-2025-24156
CVE-2025-24141
CVE-2025-24091
CVE-2025-24166
CVE-2025-24104
CVE-2024-9956
CVE-2025-24234
CVE-2025-24270
CVE-2025-24271
CVE-2025-24251
CVE-2025-31197
CVE-2025-24252
CVE-2025-30445
CVE-2025-24206
CVE-2025-24276
CVE-2024-40864
CVE-2025-24272
CVE-2025-24231
CVE-2025-24233
CVE-2025-30443
CVE-2025-24243
CVE-2025-24244
CVE-2025-30460
CVE-2025-24237
CVE-2025-30429
CVE-2025-24212
CVE-2025-24215
CVE-2025-24230
CVE-2025-24190
CVE-2025-24211
CVE-2025-31191
CVE-2025-24170
CVE-2025-24277
CVE-2024-9681
CVE-2025-24255
CVE-2025-24267
CVE-2025-30456
CVE-2025-31187
CVE-2025-30462
CVE-2025-24199
CVE-2025-30447
CVE-2025-24256
CVE-2025-24273
CVE-2025-30464
CVE-2025-24210
CVE-2025-24249
CVE-2025-24229
CVE-2025-24235
CVE-2025-30432
CVE-2025-24203
CVE-2025-24148
CVE-2025-24195
CVE-2025-27113
CVE-2024-56171
CVE-2025-24178
CVE-2025-31182
CVE-2025-24238
CVE-2025-24172
CVE-2025-30450
CVE-2025-30470
CVE-2025-24232
CVE-2025-24246
CVE-2025-24261
CVE-2025-24164
CVE-2025-30446
CVE-2025-24259
CVE-2025-30424
CVE-2025-24173
CVE-2025-30452
CVE-2025-24181
CVE-2025-30471
CVE-2025-24250
CVE-2025-30438
CVE-2025-31194
CVE-2025-30465
CVE-2025-30433
CVE-2025-24198
CVE-2025-24205
CVE-2025-30444
CVE-2025-24228
CVE-2025-24260
CVE-2025-24254
CVE-2024-54533
CVE-2025-24207
CVE-2025-24253
CVE-2025-30449
CVE-2025-31188
CVE-2025-24240
CVE-2025-24278
CVE-2025-30457
CVE-2025-24279
CVE-2025-24247
CVE-2025-24241
CVE-2025-24266
CVE-2025-24265
CVE-2025-24157
CVE-2025-24097
CVE-2025-24236
CVE-2025-30454
CVE-2025-31203
CVE-2025-30455
CVE-2025-24196
CVE-2025-24280
CVE-2025-31183
CVE-2025-24221
CVE-2025-30426
CVE-2025-30428
CVE-2025-24201
CVE-2025-30425
CVE-2025-24216
CVE-2025-24264
CVE-2025-30427
CVE-2025-24209
CVE-2024-54543
CVE-2024-54534
CVE-2024-54508
CVE-2024-54502
CVE-2025-24213

Frequently Asked Questions

What is the severity of CVE-2025-24179?
CVE-2025-24179 is considered a denial-of-service vulnerability due to a null pointer dereference.
How do I fix CVE-2025-24179?
To fix CVE-2025-24179, update your device to the latest version of iOS, iPadOS, visionOS, macOS Ventura, macOS Sonoma, macOS Sequoia, or tvOS as specified in Apple's updates.
Which devices are affected by CVE-2025-24179?
CVE-2025-24179 affects devices running iOS up to 18.3, iPadOS up to 18.3, visionOS up to 2.3, macOS Ventura up to 13.7.5, macOS Sonoma up to 14.7.5, macOS Sequoia up to 15.3, and tvOS up to 18.3.
What might an attacker be able to achieve with CVE-2025-24179?
An attacker exploiting CVE-2025-24179 could cause a denial-of-service condition on affected devices on the local network.
When was CVE-2025-24179 addressed by Apple?
CVE-2025-24179 was addressed with improved input validation in updates released with iOS 18.3, iPadOS 18.3, and other versions.

collector/mitre-cve
source/MITRE
agent/references
agent/type
agent/guess-ai
agent/software-canonical-lookup
agent/weakness
agent/last-modified-date
agent/severity
agent/event
collector/nvd-api
source/NVD
collector/apple-support
source/Apple
alias/CVE-2025-24179
alias/CVE-2025-24137
alias/CVE-2025-24087
alias/CVE-2025-24112
alias/CVE-2025-24100
alias/CVE-2025-24109
alias/CVE-2025-24114
alias/CVE-2025-24121
alias/CVE-2025-24122
alias/CVE-2025-24127
alias/CVE-2025-24106
alias/CVE-2025-24160
alias/CVE-2025-24161
alias/CVE-2025-24163
alias/CVE-2025-24123
alias/CVE-2025-24124
alias/CVE-2025-24085
alias/CVE-2025-24102
alias/CVE-2025-24134
alias/CVE-2025-24140
alias/CVE-2025-24174
alias/CVE-2025-24086
alias/CVE-2025-24118
alias/CVE-2025-24107
alias/CVE-2025-24159
alias/CVE-2025-24094
alias/CVE-2025-24115
alias/CVE-2025-24116
alias/CVE-2025-24117
alias/CVE-2025-24136
alias/CVE-2025-24101
alias/CVE-2025-24096
alias/CVE-2025-24099
alias/CVE-2025-24130
alias/CVE-2025-24169
alias/CVE-2025-24146
alias/CVE-2025-24128
alias/CVE-2025-24113
alias/CVE-2025-24149
alias/CVE-2025-24103
alias/CVE-2025-24108
alias/CVE-2025-24185
alias/CVE-2025-24139
alias/CVE-2025-24151
alias/CVE-2025-24152
alias/CVE-2025-24153
alias/CVE-2025-24138
alias/CVE-2025-24176
alias/CVE-2025-24135
alias/CVE-2025-24145
alias/CVE-2025-24092
alias/CVE-2025-24154
alias/CVE-2025-24143
alias/CVE-2025-24158
alias/CVE-2025-24162
alias/CVE-2025-24150
alias/CVE-2025-24120
alias/CVE-2025-24156
alias/CVE-2025-24126
alias/CVE-2025-24129
alias/CVE-2025-24131
alias/CVE-2025-24177
alias/CVE-2025-24091
alias/CVE-2025-24166
alias/CVE-2025-24104
alias/CVE-2024-9956
agent/source
agent/author
agent/softwarecombine
agent/tags
agent/first-publish-date
agent/description
alias/CVE-2025-24251
alias/CVE-2025-31197
alias/CVE-2025-24252
alias/CVE-2025-30445
alias/CVE-2025-24206
alias/CVE-2025-24276
alias/CVE-2024-40864
alias/CVE-2025-24272
alias/CVE-2025-24231
alias/CVE-2025-24233
alias/CVE-2025-30443
alias/CVE-2025-24243
alias/CVE-2025-24244
alias/CVE-2025-30460
alias/CVE-2025-24237
alias/CVE-2025-30429
alias/CVE-2025-24212
alias/CVE-2025-24215
alias/CVE-2025-24230
alias/CVE-2025-24190
alias/CVE-2025-24211
alias/CVE-2025-31191
alias/CVE-2025-24170
alias/CVE-2025-24277
alias/CVE-2024-9681
alias/CVE-2025-24255
alias/CVE-2025-24267
alias/CVE-2025-30456
alias/CVE-2025-31187
alias/CVE-2025-30462
alias/CVE-2025-24199
alias/CVE-2025-30447
alias/CVE-2025-24256
alias/CVE-2025-24273
alias/CVE-2025-30464
alias/CVE-2025-24210
alias/CVE-2025-24249
alias/CVE-2025-24229
alias/CVE-2025-24235
alias/CVE-2025-30432
alias/CVE-2025-24203
alias/CVE-2025-24148
alias/CVE-2025-24195
alias/CVE-2025-27113
alias/CVE-2024-56171
alias/CVE-2025-24178
alias/CVE-2025-31182
alias/CVE-2025-24238
alias/CVE-2025-24172
alias/CVE-2025-30450
alias/CVE-2025-30470
alias/CVE-2025-24232
alias/CVE-2025-24246
alias/CVE-2025-24261
alias/CVE-2025-24164
alias/CVE-2025-30446
alias/CVE-2025-24259
alias/CVE-2025-30424
alias/CVE-2025-24173
alias/CVE-2025-30452
alias/CVE-2025-24181
alias/CVE-2025-30471
alias/CVE-2025-24250
alias/CVE-2025-30438
alias/CVE-2025-31194
alias/CVE-2025-30465
alias/CVE-2025-30433
alias/CVE-2025-24198
alias/CVE-2025-24205
alias/CVE-2025-30444
alias/CVE-2025-24228
alias/CVE-2025-24260
alias/CVE-2025-24254
alias/CVE-2024-54533
alias/CVE-2025-24207
alias/CVE-2025-24253
alias/CVE-2025-30449
alias/CVE-2025-31188
alias/CVE-2025-24240
alias/CVE-2025-24278
alias/CVE-2025-30457
alias/CVE-2025-24279
alias/CVE-2025-24247
alias/CVE-2025-24241
alias/CVE-2025-24266
alias/CVE-2025-24265
alias/CVE-2025-24157
alias/CVE-2025-24270
alias/CVE-2025-24271
alias/CVE-2025-24236
alias/CVE-2025-30454
alias/CVE-2025-31203
alias/CVE-2025-30455
alias/CVE-2025-24196
alias/CVE-2025-24280
alias/CVE-2025-31183
alias/CVE-2025-24097
alias/CVE-2025-30426
alias/CVE-2025-30428
alias/CVE-2025-24201
alias/CVE-2025-30425
alias/CVE-2025-24216
alias/CVE-2025-24264
alias/CVE-2025-30427
alias/CVE-2025-24209
alias/CVE-2024-54543
alias/CVE-2024-54534
alias/CVE-2024-54508
alias/CVE-2024-54502
alias/CVE-2025-24213
vendor/apple
canonical/apple ios and ipados
canonical/apple ios, ipados, and macos
canonical/visionos
canonical/macos ventura
canonical/apple macos
canonical/macos
canonical/tvos
version/apple ios, ipados, and macos/18.0
canonical/iphone os
version/macos/14.0
version/macos/15.0