CVE-2025-31219

Published May 12, 2025

Last updated a month ago

CVSS high 7.1

Overview

Description
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. An attacker may be able to cause unexpected system termination or corrupt kernel memory.
Source
product-security@apple.com
NVD status
Analyzed

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.1
Impact score
4.2
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Severity
HIGH

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-119

Social media

Hype score
Not currently trending

  1. Apple XNU Kernel Flaw Enables Attackers to Escalate Privileges Apple has issued urgent security patches to fix CVE-2025-31219, a high-severity vulnerability in its XNU kernel affecting macOS, iOS, iPadOS, tvOS, watchOS, and visionOS. This flaw, with a CVSS score of 8.8, allows

    @minacrissDev_

    3 Jun 2025

    599 Impressions

    0 Retweets

    4 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  2. 🔴 #Apple #OS Kernel Memory Corruption Vulnerability, #CVE-2025-31219 (Critical) https://t.co/dwzj3W0ymN

    @dailycve

    28 May 2025

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. برای XNU kernel مربوط به اپل ، آسیب پذیری با کد شناسایی CVE-2025-31219 منتشر شده است.نمره این آسیب پذیری 8.8 بوده و به هکرها امکان ارتقای سطح دسترسی و اجرای کد را می دهد.

    @AmirHossein_sec

    25 May 2025

    29 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. AppleのXNUカーネルにおける権限昇格脆弱性CVE-2025-31219が修正された。CVE-2025-31219はCVSSスコア8.8で、ローカルの攻撃者がカーネル権限のアクセスを取得できる可能性。攻撃コードは公開されていない。 https://t.co/c

    @__kokumoto

    25 May 2025

    861 Impressions

    1 Retweet

    9 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  5. Apple has released security patches addressing CVE-2025-31219, which enables local attackers to escalate privileges and potentially execute arbitrary code with kernel-level access. #Cybersecurity #InfoSec https://t.co/IqcxDyV3Nd

    @MichaelGouldCRI

    24 May 2025

    28 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. Apple releases critical updates for XNU kernel flaw (CVE-2025-31219) that allows local attackers to escalate privileges and fully compromise devices. Proper patching is essential to prevent system breaches 🔐🚨 #AppleSecurity #KernelVulnerability https://t.co/f2vns5Pmre

    @TweetThreatNews

    24 May 2025

    85 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  7. AppleのXNUカーネルに重大な脆弱性(CVE-2025-31219)が発見された。これはローカル攻撃者による特権昇格およびカーネルレベルでの任意コード実行を可能にするものである。

    @yousukezan

    23 May 2025

    1435 Impressions

    0 Retweets

    2 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  8. [ZDI-25-305|CVE-2025-31219] Apple XNU kernel vm_map Race Condition Local Privilege Escalation Vulnerability (CVSS 8.8; Credit: Michael DePlante (@izobashi) and Lucas Leong (@_wmliang_) of Trend Micro's Zero Day Initiative) https://t.co/ytKy1bayhB

    @TheZDIBugs

    22 May 2025

    2106 Impressions

    5 Retweets

    22 Likes

    9 Bookmarks

    0 Replies

    0 Quotes

  9. CVE-2025-31219 Memory Corruption Vulnerability in Apple Operating Systems Impacting Multiple Platforms https://t.co/KuYSO5vR2L

    @VulmonFeeds

    13 May 2025

    29 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.