CVE-2025-30429

216.73.217.22

· Published 31/03/2025 23:15 · Modified 01/04/2025 20:26

Labels: CVE-2025-30429 2025-03-31 CVE-2025-30429 CWE-22 [email protected]

Essential information

Published: 31/03/2025 23:15
Modified: 01/04/2025 20:26
Author: —
Creator: —
CVSS: 9.8 CRITICAL (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

A path handling issue was addressed with improved validation. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to break out of its sandbox.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
apple / macos ventura	`cpe:2.3:o:apple:macos_ventura:13.7.5:::::::*`
apple / macos sequoia	`cpe:2.3:o:apple:macos_sequoia:15.4:::::::*`
apple / macos sonoma	`cpe:2.3:o:apple:macos_sonoma:14.7.5:::::::*`
apple / ipadOS	`cpe:2.3:o:apple:ipadOS:17.7.6:::::::*`
apple / ipadOS	`cpe:2.3:o:apple:ipadOS:18.4:::::::*`
apple / ios	`cpe:2.3:o:apple:ios:18.4:::::::*`
apple / tvOS	`cpe:2.3:o:apple:tvOS:18.4:::::::*`
apple / visionOS	`cpe:2.3:o:apple:visionOS:2.4:::::::*`