Vulnerability Database

290,273

Total vulnerabilities in the database

CVE-2025-24200

An authorization issue was addressed with improved state management. This issue is fixed in iPadOS 17.7.5, iOS 18.3.1 and iPadOS 18.3.1. A physical attack may disable USB Restricted Mode on a locked device. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.

  • Published: Feb 10, 2025
  • Updated: May 4, 2025
  • CVE: CVE-2025-24200
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.1
  • AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWEs:

Software From Fixed in
apple / ipados - 17.7.5
apple / ipados 18.0 18.3.1
apple / iphone_os - 18.3.1