CVE-2025-24085

Published Jan 27, 2025

Last updated 4 months ago

Exploit knownCVSS critical 10.0
Apple
iOS
CoreMedia

Overview

Description
A use after free issue was addressed with improved memory management. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2.
Source
product-security@apple.com
NVD status
Analyzed
Products
ipados, iphone_os, macos, tvos, visionos, watchos

Risk scores

CVSS 3.1

Type
Primary
Base score
10
Impact score
6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Severity
CRITICAL

Known exploits

Data from CISA

Vulnerability name
Apple Multiple Products Use-After-Free Vulnerability
Exploit added on
Jan 29, 2025
Exploit action due
Feb 19, 2025
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Weaknesses

nvd@nist.gov
CWE-416
134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-416

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2025-24085 A use after free issue was addressed with improved memory management. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A malicious application may be able to elevate privileges. Apple is aware of a

    @AnonOzzyDude

    12 Nov 2025

    130 Impressions

    1 Retweet

    3 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Actively exploited zero-click iMessage vulnerability (CVE-2025-24085) compromises iOS devices. SMB risk: data breach. Action: monitor for updates and apply patches when available. https://t.co/vf50j93OXb #CyberSecurity #InfoSec #ActivelyExploited

    @lowcountrycyber

    10 Nov 2025

    17 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. APPLE SECURITY CRISIS: "Glass Cage" Zero-Click iMessage Exploit Explained (CVE-2025-24085 & 24201) Read the full report on - https://t.co/79Z08mcGCJ https://t.co/zkC7mdrCUH

    @cyberbivash

    6 Oct 2025

    1 Impression

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. #GlassCage zero-click attack IOS Once triggered, the chain escalates to full root access via a combination of WebKit RCE (CVE-2025-24201) and Core Media kernel exploitation (CVE-2025-24085).#IOCs https://t.co/W8LUCBiU9k https://t.co/QoMCRhoORB

    @minacrissDev_

    4 Oct 2025

    11 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Full Disclosure: Re: [FD] : "Glass Cage" – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885) https://t.co/Z4RrS5tl0G

    @minacrissDev_

    4 Oct 2025

    513 Impressions

    0 Retweets

    1 Like

    1 Bookmark

    0 Replies

    0 Quotes

  6. Full Disclosure: Re: [FD] : "Glass Cage" – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885) https://t.co/xdi3DWzPEh

    @samilaiho

    4 Oct 2025

    165 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. "Glass Cage" – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885) : https://t.co/aNbEQtcpWv

    @bluetouff

    3 Oct 2025

    1424 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  8. https://t.co/omYS3KTsGu Re: [FD]: "Glass Cage" – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885)

    @CALIVEDATA

    2 Oct 2025

    37 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. Top 5 Trending CVEs: 1 - CVE-2025-24085 2 - CVE-2022-2471 3 - CVE-2025-5777 4 - CVE-2024-49019 5 - CVE-2024-36401 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    29 Sept 2025

    11 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. Top 5 Trending CVEs: 1 - CVE-2025-24085 2 - CVE-2024-36401 3 - CVE-2025-8088 4 - CVE-2025-0309 5 - CVE-2024-38399 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    28 Sept 2025

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. Writeup for CVE-2025-24085, an ITW mediaplaybackd vulnerability patched earlier this year https://t.co/XopOVNmfnc

    @b1n4r1b01

    27 Sept 2025

    25852 Impressions

    49 Retweets

    217 Likes

    81 Bookmarks

    1 Reply

    1 Quote

  12. Glass Cage is a zero-click PNG-based RCE chain in iOS 18.2.1, exploiting WebKit (CVE-2025-24201) and Core Media (CVE-2025-24085) to achieve sandbox escape, kernel-level access, and device bricking. Triggered via iMessage, it enables full compromise with no user interaction.

    @Jeyso215

    12 Sept 2025

    97 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    1 Reply

    0 Quotes

  13. #GlassCage zero-click attack IOS Once triggered, the chain escalates to full root access via a combination of WebKit RCE (CVE-2025-24201) and Core Media kernel exploitation (CVE-2025-24085). I’m excited to announce FREE GIVEAWAYS For - iCloud Bypass (Activation Lock Removal)

    @minacrissDev_

    26 Aug 2025

    637 Impressions

    2 Retweets

    9 Likes

    5 Bookmarks

    0 Replies

    0 Quotes

  14. CVE-2025-24085: Apple Multiple Products Use-After-Free Vulnerability https://t.co/C4FgvanjQi

    @ytroncal

    3 Aug 2025

    24 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. #GlassCage zero-click attack IOS Once triggered, the chain escalates to full root access via a combination of WebKit RCE (CVE-2025-24201) and Core Media kernel exploitation (CVE-2025-24085).#IOCs https://t.co/44okBv1Vbv https://t.co/S8USMju6Yg

    @blackorbird

    18 Jun 2025

    3876 Impressions

    17 Retweets

    37 Likes

    15 Bookmarks

    1 Reply

    2 Quotes

  16. : "Glass Cage" – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885) https://t.co/4BmvZS1H4e

    @Dinosn

    18 Jun 2025

    4595 Impressions

    10 Retweets

    29 Likes

    9 Bookmarks

    1 Reply

    1 Quote

  17. Top 5 Trending CVEs: 1 - CVE-2025-24085 2 - CVE-2025-30397 3 - CVE-2024-29269 4 - CVE-2020-27786 5 - CVE-2023-39780 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    2 Jun 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  18. 🚨 Apple Users, You Need to See This A critical Apple vulnerability, CVE-2025-24085 is now being sold on the dark web. It lets attackers take over your device completely. No warning. No permission needed. #exploit #AppleSecurity #iOSExploit #ZeroDay #CyberThreats #CertcubeLa

    @certcube

    29 May 2025

    66 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  19. CVE-2025-24085 - iOS 18.3 This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A malicious application may be able to elevate privileges. Pic by - M1n@Cris https://t.co/vqpUL9eutU

    @ZeeIpaLibrary

    25 May 2025

    4724 Impressions

    4 Retweets

    25 Likes

    5 Bookmarks

    2 Replies

    0 Quotes

  20. (CVE-2025-24085)UAF in CoreMedia??? Exploited ITW against versions of iOS before iOS 17.2 https://t.co/HqNvssvPPI https://t.co/ng58StoylZ

    @minacrissDev_

    14 May 2025

    4324 Impressions

    4 Retweets

    41 Likes

    12 Bookmarks

    3 Replies

    0 Quotes

  21. Apple cihazlarında boşluqlar (CVE-2025-24085, CVE-2025-24200, CVE-2025-24201) aşkar olunub. #ETX #certaz #cybersecurity #kibertəhlükəsizlik #xəbərdarlıq https://t.co/aveeSTKcTQ

    @CERTAzerbaijan

    15 Apr 2025

    29 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  22. Apple has released backported fixes for three critical vulnerabilities in older iOS and macOS devices, which have been actively exploited. The vulnerabilities include: 1. **CVE-2025-24085** (CVSS 7.3): A use-after-free bug in Core Media that could allow privilege escalation. htt

    @smart_c_intel

    11 Apr 2025

    38 Impressions

    0 Retweets

    3 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  23. 🚨 Old iPhones, new threats. Apple just patched 3 exploited zero-days and yes, even your dusty iPhone 6s is getting a fix. 🛡️ What's at stake? • CVE-2025-24201 (CVSS 8.8): Malicious web content breaking free from Safari’s sandbox • CVE-2025-24085 (7.3): Apps hijacking system ht

    @achi_tech

    5 Apr 2025

    37 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  24. اپل برای ۳ آسیب پذیری خطرناک از نوع Zero Day با کدهای شناسایی CVE-2025-24200 و  CVE-2025-24201 و CVE-2025-24085 که در apple watch و IPhone و IPad و apple TV وجود دارد ، پچ مربوطه را منتشر نموده است. برای پیشگیری به روز رسانی را انجام‌ دهید. https://t.co/Poz3aKY03t https://t.co/jt

    @AmirHossein_sec

    4 Apr 2025

    26 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  25. أبل تغلق ٣ ثغرات مهمه -CVE-2025-24085 ثغرة تتعلق ب رفع صلاحيات التطبيق الضار في النظام -CVE-2025-24200 ثغره تسمح بنقل البيانات من الاجهزة دون طلب صلاحيات من منفذ USB -CVE-2025-24201 ثغرة تسمح لمحتوى الويب الضار بالدخول بالتعدي على امان التصفح لدى الاجهزة لابد تحدث جهازك 🏃 h

    @HereHuss

    2 Apr 2025

    34 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  26. Apple has issued an urgent security advisory about three zero-day vulnerabilities—CVE-2025-24200, CVE-2025-24201, and CVE-2025-24085—currently being exploited in sophisticated cyberattacks. These vulnerabilities affect a wide range of Apple devices, including iPhones, iPads, Macs

    @Avengingsecure

    2 Apr 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  27. The Apple zero days are CVE-2025-24200 allows disabling USB Restricted Mode through physical access. CVE-2025-24201 compromises WebKit, enabling malicious web content to escape the sandbox. CVE-2025-24085 is a use-after-free vulnerability that may lead to privilege escalation.

    @RayyxAB

    2 Apr 2025

    30 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  28. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    2 Apr 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  29. Apple backported fixes for three zero-day flaws (CVE-2025-24200, CVE-2025-24201, CVE-2025-24085) exploited in attacks on older iOS, iPadOS, & macOS versions. Learn about these vulnerabilities, their exploitation methods, & how to detect and mitigate them: https://t.co/Q5U

    @qualys

    1 Apr 2025

    368 Impressions

    2 Retweets

    2 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  30. Apple has issued security updates backporting fixes for zero-day vulnerabilities CVE-2025-24200, CVE-2025-24201, and CVE-2025-24085 to older OS versions. Additionally, updates for the latest iOS, iPadOS, macOS, Safari, and Xcode have been released. #apple #updates https://t.co/F4

    @Strivehawk

    1 Apr 2025

    32 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  31. تحديث iOS 18.4 قام باغلاق ثلاث ثغرات خطيرة (الايفون والماك والايباد) • ثغرة CVE-2025-24085: ترفع الصلاحيات لثببت تطبيقات غير مصرحه • ثغرة CVE-2025-24200: تعطل قيود الـ USB • ثغرة CVE-2025-24201: تلاعب بالمواقع لتجاوز الساند بوكس انصح بشدة بتحديث جهازك حالاً وتأمينه https://t

    @alghali

    1 Apr 2025

    12110 Impressions

    9 Retweets

    11 Likes

    8 Bookmarks

    5 Replies

    1 Quote

  32. • CVE-2025-24085 (CVSS score: 7.3) Ошибка использования после освобождения в компоненте Core Media. • CVE-2025-24200 (CVSS score: 4) Проблема авторизации в компоненте Специальные возможности, из-за которой отключить USB. • CVE-2025-24085 • CVE-2025-24200 • CVE-2025-24201 https

    @byt3n33dl3

    1 Apr 2025

    47 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  33. Apple corregge 3 vulnerabilità critiche ed emerge exploit attivo su Cisco Sicurezza Informatica, cisa, cisco, CVE-2024-20439, CVE-2025-24085, exploit, iOS 15.8.4, vulnerabilità, webkit, zero-day https://t.co/SMuNjif9qA https://t.co/V66ErBLPWQ

    @matricedigitale

    1 Apr 2025

    72 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  34. 🚨 Old iPhones, new threats. Apple just patched 3 exploited zero-days—and yes, even your dusty iPhone 6s is getting a fix. 🛡️ What's at stake? • CVE-2025-24201 (CVSS 8.8): Malicious web content breaking free from Safari’s sandbox • CVE-2025-24085 (7.3): Apps hijacking system ht

    @TheHackersNews

    1 Apr 2025

    16012 Impressions

    82 Retweets

    149 Likes

    27 Bookmarks

    3 Replies

    4 Quotes

  35. Apple has issued an urgent security advisory concerning three critical zero-day vulnerabilities CVE-2025-24200, CVE-2025-24201, and CVE-2025-24085 that have been actively exploited in sophisticated attacks. https://t.co/7e6dl8ADJ3

    @Ashutosh__048

    1 Apr 2025

    7 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  36. 🔥 Apple ≠ Invincible. In 2025, macOS is under siege: 💥 CVE-2025-24085: kernel exploit sold on the dark web 🪓 SIP bypass still in use 🛡️ SMBs see $158K breach costs New data-led deep dive from @taqtics_ai 📊👇 https://t.co/WYIuefVwEk #macOS #CyberSecurity #SMB https://t

    @taqtics_ai

    29 Mar 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  37. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    17 Mar 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  38. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    23 Feb 2025

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  39. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    22 Feb 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  40. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    22 Feb 2025

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  41. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    21 Feb 2025

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  42. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    17 Feb 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  43. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    15 Feb 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  44. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    14 Feb 2025

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  45. Apple Fixes Zero-Day Exploited in Sophisticated Attacks! 🚨 CVE-2025-24200 allowed disabling USB Restricted Mode on locked devices—potential spyware risk! Another flaw (CVE-2025-24085) led to privilege escalation. Update NOW to iOS/iPadOS 18.3.1! https://t.co/T1MAc8L5JX… https:

    @dCypherIO

    11 Feb 2025

    136 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  46. 🔐 Attenzione utenti Apple! La vulnerabilità zero-day CVE-2025-24085 minaccia i vostri iPhone, iPad e Mac. Aggiornate subito per proteggere i vostri dati! Siete pronti a difendere la vostra privacy? #AppleSecurity #CyberAlert https://t.co/SwzpZIrgj8

    @LoSmartphone

    11 Feb 2025

    20 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  47. Update your Apple products immediately! Due to CVE-2025-24085 it disables USB restricted mode and allows for exploitation and sideloading of unauthorized applications (back doors mostly). Do not ignore this update!

    @zeroday31337

    11 Feb 2025

    20 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  48. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    10 Feb 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  49. #Apple released security updates for CVE-2025-24085. Don’t wait—check out this Cybersecurity Threat Advisory to learn how to secure your devices now! https://t.co/DIIpJHO5SN #ThreatAdvisory

    @BarracudaMSP

    10 Feb 2025

    53 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  50. Actively exploited CVE : CVE-2025-24085

    @transilienceai

    9 Feb 2025

    19 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

Configurations

Related CVEs

  1. A cross-origin issue in the Navigation API was addressed with improved input validation. This issue is fixed in Background Security Improvements for iOS 26.3.1, iPadOS 26.3.1, macOS 26.3.1, and macOS 26.3.2. Processing maliciously crafted web content may bypass Same Origin Policy.CVE-2026-20643
  2. The issue was addressed with improved memory handling. This issue is fixed in iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2, Safari 17.2, iOS 16.7.15 and iPadOS 16.7.15, iOS 15.8.7 and iPadOS 15.8.7. Processing maliciously crafted web content may lead to memory corruption.CVE-2023-43010
  3. A race condition was addressed with improved handling of symbolic links. This issue is fixed in macOS Tahoe 26.3, macOS Sonoma 14.8.4, iOS 18.7.5 and iPadOS 18.7.5, visionOS 26.3, iOS 26.3 and iPadOS 26.3. A shortcut may be able to bypass sandbox restrictions.CVE-2026-20677
  4. A logic issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3, iOS 18.7.5 and iPadOS 18.7.5. An attacker may be able to discover a user’s deleted notes.CVE-2026-20682
  5. An authorization issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3, iOS 18.7.5 and iPadOS 18.7.5. An app may be able to access sensitive user data.CVE-2026-20678

References

Sources include official advisories and independent security research.