A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/122371 | Vendor Advisory |
| https://support.apple.com/en-us/122373 | Vendor Advisory |
| http://seclists.org/fulldisclosure/2025/Apr/4 | |
| http://seclists.org/fulldisclosure/2025/Apr/8 |
Configurations
Configuration 1 (hide)
|
History
03 Nov 2025, 21:19
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
07 Apr 2025, 13:43
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://support.apple.com/en-us/122371 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/122373 - Vendor Advisory | |
| CPE | cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* |
|
| Summary |
|
|
| First Time |
Apple iphone Os
Apple Apple macos Apple ipados |
01 Apr 2025, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
| CWE | CWE-284 |
31 Mar 2025, 23:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-03-31 23:15
Updated : 2025-11-03 21:19
NVD link : CVE-2025-24202
Mitre link : CVE-2025-24202
CVE.ORG link : CVE-2025-24202
JSON object : View
Products Affected
apple
- iphone_os
- macos
- ipados
CWE
CWE-284
Improper Access Control