AI description
CVE-2025-46285 involves an integer overflow that was addressed by adopting 64-bit timestamps. The vulnerability is fixed in multiple Apple operating systems, including macOS Sonoma 14.8.3, macOS Sequoia 15.7.3, watchOS 26.2, iOS 18.7.3, iPadOS 18.7.3, iOS 26.2, iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2, and tvOS 26.2. Successful exploitation of this vulnerability could allow an application to gain root privileges on the affected system.
- Description
- An integer overflow was addressed by adopting 64-bit timestamps. This issue is fixed in watchOS 26.2, macOS Sonoma 14.8.3, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, macOS Sequoia 15.7.3, visionOS 26.2, tvOS 26.2. An app may be able to gain root privileges.
- Source
- product-security@apple.com
- NVD status
- Modified
- Products
- macos
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-190
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
10
iOS 26.1 has a candidate for root exploit: CVE-2025-46285 can't provide kernel debugging or jailbreak, but may be useful as a stepping stone to bootstrap visibility into iOS internals, and find a bug that can. https://t.co/9aN2p373Bf
@minacrissDev_
29 Dec 2025
5951 Impressions
8 Retweets
67 Likes
15 Bookmarks
0 Replies
1 Quote
iOS 26.1 has a candidate for root exploit: CVE-2025-46285 can't provide kernel debugging or jailbreak, but may be useful as a stepping stone to bootstrap visibility into iOS internals, and find a bug that can. https://t.co/UvG9m2Ow45
@zerodaytraining
29 Dec 2025
23933 Impressions
39 Retweets
319 Likes
91 Bookmarks
1 Reply
3 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8E37DC2A-33E6-480B-8DFE-4F6558F0A895",
"versionEndExcluding": "14.8.3"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3428C860-E02D-4FE9-96F4-58EEAAB8321D",
"versionEndExcluding": "15.7.3",
"versionStartIncluding": "15.0"
}
],
"operator": "OR"
}
]
}
]