Vulnerability Database

309,540

Total vulnerabilities in the database

CVE-2025-24091

An app could impersonate system notifications. Sensitive notifications now require restricted entitlements. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.3. An app may be able to cause a denial-of-service.

Published: Apr 30, 2025
Updated: Nov 16, 2025
CVE: CVE-2025-24091
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWEs:

CWE-290

Affected Software
References

Software	From	Fixed in
apple / ipados	-	17.7.3
apple / ipados	18.0	18.3
apple / iphone_os	-	18.3.x

https://support.apple.com/en-us/121838
https://support.apple.com/en-us/122066

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo