CVE-2025-24132

Published Apr 30, 2025

Last updated 7 months ago

CVSS medium 6.5
Apple
AirPlay SDK

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-24132 is a stack-based buffer overflow vulnerability that exists in Apple's AirPlay SDK. Successful exploitation could allow a local attacker to perform zero-click remote code execution on vulnerable AirPlay SDK devices. It can also potentially lead to sensitive information disclosure through eavesdropping on devices with microphones. The vulnerability can be triggered by sending malformed pairing packets over TCP port 7000. It affects AirPlay audio SDK, AirPlay video SDK, and CarPlay Communication Plug-in. Updates have been released to address this issue in AirPlay audio SDK 2.7.1, AirPlay video SDK 3.6.0.126, and CarPlay Communication Plug-in R18.1.

Description
The issue was addressed with improved memory handling. This issue is fixed in AirPlay audio SDK 2.7.1, AirPlay video SDK 3.6.0.126, CarPlay Communication Plug-in R18.1. An attacker on the local network may cause an unexpected app termination.
Source
product-security@apple.com
NVD status
Analyzed
Products
airplay_audio_software_development_kit, airplay_video_software_development_kit, carplay_communication_plug-in

Risk scores

CVSS 3.1

Type
Primary
Base score
6.5
Impact score
3.6
Exploitability score
2.8
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
MEDIUM

Weaknesses

nvd@nist.gov
CWE-119
134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-119

Social media

Hype score
Not currently trending

  1. Does anybody here understand the AirPlay protocol pairing process? I have figured out CVE-2025-24132 found last year by @OligoSecurity, but trying to actually reach it has been a bitch. There is an overflow in the SET_PARAMETER handling that was patched: https://t.co/q5SH9vSn35

    @GaminGallifreyn

    7 Nov 2025

    87 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    3 Replies

    0 Quotes

  2. 🚨AirBorne: Full PoC Framework for CVE-2025-24252 & CVE-2025-24132 AirBorne is a combined proof-of-concept (PoC) framework targeting two serious vulnerabilities in Apple's AirPlay service. GitHub: https://t.co/PwxJ3jo2d3 https://t.co/BHOPAu3WWF

    @DarkWebInformer

    18 Oct 2025

    4357 Impressions

    3 Retweets

    18 Likes

    10 Bookmarks

    1 Reply

    0 Quotes

  3. ⚠️ Weekly vuln radar from https://t.co/8RzyA4nEyg: CVE-2024-3400 (@stevenadair) CVE-2025-24132 CVE-2025-43300 CVE-2025-5777 CVE-2025-55177 CVE-2023-34044 (@pr0Ln) CVE-2023-20870 CVE-2025-10035 CVE-2025-20333 https://t.co/Z18UZ0WhOF

    @ptdbugs

    3 Oct 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. ⚠️ This week’s Threatsday Bulletin is here. 🔹 CarPlay exploit (CVE-2025-24132) 🔹 Root access—no clicks needed 🔹 Patch released, but OEMs haven’t applied it 🔹 and more critical threats you can’t ignore... Your systems may already be at risk. Read ↓ htt

    @TheHackersNews

    2 Oct 2025

    65890 Impressions

    35 Retweets

    105 Likes

    27 Bookmarks

    2 Replies

    2 Quotes

  5. Apple CarPlay flaw (CVE-2025-24132) enables zero-click RCE via Bluetooth—most cars remain unpatched months after fix. Infotainment is now an attack surface. 🚗💥 #CarPlayExploit #AutoCyberThreats https://t.co/E34ogKLgfI

    @manuelbissey

    15 Sept 2025

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. [Apple CarPlay] 脆弱性CVE-2025-24132、なぜ修正パッチは適用されないのか?自動車業界の構造的課題に迫る https://t.co/xvQWixNTdY

    @yousukezan

    15 Sept 2025

    940 Impressions

    2 Retweets

    0 Likes

    1 Bookmark

    1 Reply

    0 Quotes

  7. [Apple CarPlay] 脆弱性CVE-2025-24132、なぜ修正パッチは適用されないのか?自動車業界の構造的課題に迫る https://t.co/ZmzyA1GsDu 私たちユーザーは、「クルマもハッキングされる時代」に生きているという認識を新た

    @innovaTopia_JP

    13 Sept 2025

    105 Impressions

    1 Retweet

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. https://t.co/ZpA0SXtJEG 🚨 Apple CarPlay Exploit Still Unpatched in Most Cars 🚨 Nearly half a year after Apple released a fix for a zero-click CarPlay vulnerability (CVE-2025-24132), most vehicles remain unpatched. Researchers found attackers could exploit weak Bluetooth o

    @M_Trucking_Ins

    12 Sept 2025

    45 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  9. Apple CarPlayのRCE脆弱性CVE-2025-24132が未修正のまま放置される問題 https://t.co/J8TEgECitB #Security #セキュリティ #ニュース

    @SecureShield_

    12 Sept 2025

    71 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. Oligo uncovers Apple CarPlay's security flaw CVE-2025-24132, allowing remote code execution via AirPlay due to weak Bluetooth pairing. Attackers can access WiFi credentials for RCE attacks. Apple fixed this in AirPlay SDK, but car makers lag in implementing the patch, leaving

    @bigmacd16684

    11 Sept 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. AppleのCarPlayにおけるroot権限での遠隔コード実行の脆弱性について。CVE-2025-24132。スタックオーバーフロー。修正済みのSDKは4/29に提供済みだが、多くの車載ユニットではまだ修正が反映されていない。PIN不要で

    @__kokumoto

    10 Sept 2025

    1307 Impressions

    5 Retweets

    10 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

  12. Apple CarPlay Hacking Risks: CVE-2025-24132 Explained https://t.co/gcsVgQkxkr https://t.co/W48HThaPNh

    @secharvesterx

    10 Sept 2025

    67 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  13. Pwn My Ride: Apple CarPlay RCE - iAP2 protocol and CVE-2025-24132 Explained https://t.co/OX3YRaBdrG

    @_r_netsec

    10 Sept 2025

    2170 Impressions

    8 Retweets

    21 Likes

    17 Bookmarks

    0 Replies

    0 Quotes

  14. 🔥 วันวุ่น ๆ ของวัยรุ่นไอที! งานก็ยุ่งแล้ว ข่าวไซเบอร์ก็ยังแรงต่อเนื่อง วันนี้ทาง STH ได้รวบรวมข่าวที่

    @siamthanathack

    8 May 2025

    133 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. ⚠️Múltiples vulnerabilidades en Apple Airplay ❗CVE-2025–24252 ❗CVE-2025-24206 ❗CVE-2025-24132

    @minacrissDev_

    8 May 2025

    243 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. ⚠️Múltiples vulnerabilidades en Apple Airplay ❗CVE-2025–24252 ❗CVE-2025-24206 ❗CVE-2025-24132 ➡️Más info: https://t.co/GqX38xPu62 https://t.co/RMDZFb8Xwf

    @CERTpy

    6 May 2025

    73 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  17. Critical AirPlay vulnerabilities (CVE-2025-24252, CVE-2025-24132) allow zero-click RCE over local Wi-Fi, affecting Apple devices & third-party receivers. Wormable exploit could spread autonomously across networks. Actions: •Update to latest OS versions •Restrict AirPla

    @redfoxsec

    6 May 2025

    83 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  18. New Apple exploit dropped. CVE-2025-24252 + CVE-2025-24132 = silent RCE Check em out if you like this shit

    @_0xHuCk

    5 May 2025

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  19. 🚨 Zero-click. Wormable. Network-spreading. New flaws in Apple’s AirPlay protocol (🔓 AirBorne) could let hackers hijack your device without a click—then ride your Wi-Fi into corporate networks. CVE-2025-24252 + CVE-2025-24132 = silent RCE across Macs, TVs, speakers. Ju

    @TheHackersNews

    5 May 2025

    23878 Impressions

    97 Retweets

    226 Likes

    52 Bookmarks

    3 Replies

    7 Quotes

  20. CVE-2025-24132 The issue was addressed with improved memory handling. This issue is fixed in AirPlay audio SDK 2.7.1, AirPlay video SDK 3.6.0.126, CarPlay Communication Plug-in R18.… https://t.co/K5jFepX0zW

    @CVEnew

    30 Apr 2025

    310 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  21. PoCs for CVE-2025-24252 and CVE-2025-24132 Discovered and detailed by Oligo Security Poc by me of one of the many paths we can take to rce. #hacker #cybersecurity #EthicalHacking https://t.co/mNk2urVdN3

    @anoncitylights

    30 Apr 2025

    38 Impressions

    0 Retweets

    3 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  22. 📱AirPlay Zero-Click Flaws Expose Apple Devices 23 vulnerabilities, including critical RCE flaws (CVE-2025-24252, CVE-2025-24132), let attackers take control of Apple devices with no user interaction. Espionage, ransomware, and supply chain risk. https://t.co/RMhBfTwGYg #Appl

    @dCypherIO

    30 Apr 2025

    52 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  23. AppleのAirPlayにおける脆弱性群"AirBorne"はゼロクリックでの遠隔コード実行につながる。Oligo Security社報告。修正済み。23件の脆弱性をAppleに報告しており、CVE-2025-24252とCVE-2025-24132の組み合わせがゼロクリック。CV

    @__kokumoto

    29 Apr 2025

    611 Impressions

    2 Retweets

    4 Likes

    1 Bookmark

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.